Custom Rules for Defender

Hello!

Does defender have an option to deploy custom queries and rules via GitHub like Sentinel? Or is there a way to use API calls, notebooks, playbooks etc? Or even bulk upload custom rules through a file?

I’m just shocked that I can’t find a way to create rules and queries in a more efficient way. Any advise would be really appreciated!

0 Replies

Disable Defender for Cloud Apps alerts

by VolkerRacho on November 24, 2023

1216 Views

0 Likes

1 Replies

M365 Defender custom queries host in Azure Devops repo

by JiriLiska on July 11, 2023

873 Views

0 Likes

4 Replies

THE VIRTUAL NINJA SHOW SEASON 4 RECAP

by Heike Ritter on June 28, 2023

6780 Views

1 Likes

0 Replies

Automating detection engineering for MS 365 Defender

by Tosty20 on June 22, 2023

508 Views

0 Likes

2 Replies

Products (50)

Special Topics (27)

Video Hub (462)

Most Active Hubs

Most Active Hubs

Video Hub

Custom Rules for Defender