Microsoft Entra Suite Tech Accelerator
Aug 14 2024, 07:00 AM - 09:30 AM (PDT)
Microsoft Tech Community

Can Defender for Endpoint detect JNDI Lookup workaround

Copper Contributor



can Defender for Endpoint detect, that JNDI lookup workaround was implemented on log4j library ?


Will venerability disappear in venerability dashboard or device software inventory when  JNDI lookup workaround is implemented ?

3 Replies


Hi David, I think this Mitigation status works only when you click on Mitigation option in Defender and

Defender agent applies the JNDL lookup workaround.

My question was, can Defender detect when JNDL Lookup workaround is performed manually by server admins. 


 I have the same question: if the JNDILookup class is manually removed, will Defender pick that up?