Forum Discussion
Solved
Weekely Vulnerability report for servers
We use defender for endpoint on our server fleet. With vulnerability management, I want to receive a weekly report of missing patches emailed to our security team. The report should contain Server n...
- You can use logic apps to do this.
Cannot remember if the DeviceTvmSoftwareVulnerabilitiesKB is available in the regular MDE advanced hunting connector, but if it is not you can access the microsoft 365 defender rest API to run queries there.
Results can be made into a csv file etc, and then mailed via outlook, sendgrid or some other mail solution available in the logic apps.
you can try custom detection rule https://learn.microsoft.com/en-us/microsoft-365/security/defender/custom-detection-rules?view=o365-worldwide
- Don't think I can use a custom rule as it doesn't allow the data to be emailed.