Microsoft Defender for Endpoint Blog

When evaluating various solutions, your peers value hearing from people like you who’ve used the product. Review Defender for Endpoint by filling out a Gartner Peer Insights survey and receive a $25 USD gift card (for customers only). Microsoft Privacy Statement

Options
23.5K
Antonio Vasconcelos on May 13 2020 11:51 AM
48.6K
Antonio Vasconcelos on May 05 2020 10:52 AM
169K
Antonio Vasconcelos on Apr 22 2020 08:47 AM
272K
Antonio Vasconcelos on Apr 14 2020 10:54 AM

Latest Comments

Thanks @SaarCohen, any word on possible detections within Defender XDR for RDP Nesting? Maybe include other detections like rare RDP connection so I can kill off the Sentinel analytic rules 🙂
0 Likes
@MikeP751860 , we are working on a fix. Please expect this issue to be resolved by the end of September.
0 Likes
This is one of the finest contributions to the community! The structured approach, with content tailored for both Security Operations (SecOps) and Security Administrators (SecAdmin), is incredibly valuable. The progression from Fundamentals to Expert level, along with the knowledge checks and the en...
0 Likes
Recently found out the Sentinel Defender XDR connector isn't pulling in the additional fields so anyone RDP Nesting custom rules would need to be in Defender 😞 Wrote this KQL for it but no time to test it yet. (DeviceNetworkEvents| where IsInitiatingProcessRemoteSession == "True" and ActionType has...
0 Likes
Great post, the updating process is very nice and smart tbh. The layered, ring based controlled feature rollout is the way.
4 Likes