Evaluation lab updates: device renewal and new simulations

Published Jul 06 2021 08:12 AM 2,777 Views
Microsoft

Microsoft Defender for Endpoint’s Evaluation Lab is growing with a new feature for device renewal, as well as two new simulations! 

 

The evaluation lab is a playground for you to test Microsoft Defender for Endpoint’s defense against test scenarios of your own, as well as various simulations provided by our partners SafeBreach & AttackIQ, without the hassle of setting up a testing environment. 

 

Until now, the evaluation lab provided customers with a limited number of devices. Now, you can renew your lab resources once a month, allowing you to continuously use the evaluation lab for your testing needs. To do this, simply click on the “request for more devices” button, choose your configuration, and submit the request. 

 

Yaniv_Carmel_3-1625582836608.png

 

When the request is submitted successfully, you will see a green confirmation banner and the date of the last submission. 

 

Yaniv_Carmel_4-1625582836612.png

 

You can find the status of your request in the “User Actions” tab. Expect the request to be approved shortly. 

 

Now that you have added your new devices, it’s a great time to check out our new simulations for Carbanak and FIN7, as well as the SolarWinds Campaign, provided by SafeBreach! 

 

These simulations allow you to evaluate Microsoft Defender for Endpoint’s detection and protection capabilities against a few of the most prominent threat actors these days. 

 

Carbanak and FIN7 are financially-motivated threat groups, considered to be two of the most successful criminal hacking groups in the world, so much that they were chosen to be the subject of the recent MITRE Engenuity ATT&CK® 2021 evaluation. 

 

The SolarWinds Campaign is a supply chain attack utilizing SolarWinds’ popular network management software - SolarWinds® Orion®. This campaign, dubbed “the largest and most sophisticated attack the world has ever seen”, left tens of thousands of organizations vulnerable. 

 

To run these simulations, navigate to the “Tutorials & simulations” section, choose a simulation, and click “run”. Then, in the “Create simulation” side panel, select a device and click on the “Create simulation” button. 

 

Yaniv_Carmel_6-1625583450605.png

 

To learn more about the simulations, read the simulation documentation: 

2 Comments
Visitor

Here in techcommunity I read about a dev tenant that contains e5 licenses which makes it ideal for testing new Features.  However it only contains defender not defender for endpoint. Could someone add this to the dev tenants e5 licenses? This would be great 

Microsoft

@mailmonster You can add 30 days trial Full E5 subscription for 25 Users from the admin portal: 

Browse to portal.office.com with your dev tenant credentials > Billing > Searching and selecting M365 E5 and select "Start Trial". 
There is no need for a credit card or any renewal commitment, just your mobile number for identity verification. 
alternatively, you can ask your partner or account manager for a "Demo Tenant" for 30 days. 

 

%3CLINGO-SUB%20id%3D%22lingo-sub-2519691%22%20slang%3D%22en-US%22%3EEvaluation%20lab%20updates%3A%20device%20renewal%20and%20new%20simulations%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2519691%22%20slang%3D%22en-US%22%3E%3CP%3E%3CSPAN%20data-contrast%3D%22auto%22%3EMicrosoft%20Defender%20for%20Endpoint%E2%80%99s%26nbsp%3B%3C%2FSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fmicrosoft-365%2Fsecurity%2Fdefender-endpoint%2Fevaluation-lab%3Fview%3Do365-worldwide%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3E%3CSPAN%20data-contrast%3D%22none%22%3EEvaluation%20Lab%3C%2FSPAN%3E%3C%2FA%3E%3CSPAN%20data-contrast%3D%22auto%22%3E%26nbsp%3Bis%20growing%20with%20a%20new%20feature%20for%20device%20renewal%2C%20as%20well%20as%20two%20new%20simulations!%3C%2FSPAN%3E%3CSPAN%20data-ccp-props%3D%22%7B%26quot%3B201341983%26quot%3B%3A0%2C%26quot%3B335559739%26quot%3B%3A160%2C%26quot%3B335559740%26quot%3B%3A259%7D%22%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%20data-contrast%3D%22auto%22%3EThe%20evaluation%20lab%26nbsp%3Bis%20a%20playground%20for%26nbsp%3Byou%20to%20test%20Microsoft%20Defender%20for%20Endpoint%E2%80%99s%20defense%20against%20test%20scenarios%20of%20your%20own%2C%20as%20well%20as%26nbsp%3Bvarious%20simulations%20provided%20by%20our%20partners%26nbsp%3BSafeBreach%26nbsp%3B%26amp%3B%26nbsp%3BAttackIQ%2C%20without%20the%20hassle%20of%20setting%20up%20a%20testing%20environment.%3C%2FSPAN%3E%3CSPAN%20data-ccp-props%3D%22%7B%26quot%3B201341983%26quot%3B%3A0%2C%26quot%3B335559739%26quot%3B%3A160%2C%26quot%3B335559740%26quot%3B%3A259%7D%22%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%20data-contrast%3D%22auto%22%3EUntil%20now%2C%20the%20evaluation%20lab%20provided%20customers%20with%20a%20limited%20number%20of%20devices.%20Now%2C%26nbsp%3B%3C%2FSPAN%3E%3CSTRONG%3E%3CSPAN%20data-contrast%3D%22auto%22%3Eyou%20can%20renew%20your%20lab%20resources%20once%20a%20month%3C%2FSPAN%3E%3C%2FSTRONG%3E%3CSPAN%20data-contrast%3D%22auto%22%3E%2C%20allowing%20you%20to%20continuously%20use%20the%20evaluation%20lab%26nbsp%3Bfor%20your%20testing%20needs.%26nbsp%3BTo%20do%20this%2C%20simply%20click%20on%20the%20%E2%80%9Crequest%20for%20more%20devices%E2%80%9D%20button%2C%20choose%20your%20configuration%2C%20and%20submit%20the%20request.%3C%2FSPAN%3E%3CSPAN%20data-ccp-props%3D%22%7B%26quot%3B201341983%26quot%3B%3A0%2C%26quot%3B335559739%26quot%3B%3A160%2C%26quot%3B335559740%26quot%3B%3A259%7D%22%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-center%22%20image-alt%3D%22Yaniv_Carmel_3-1625582836608.png%22%20style%3D%22width%3A%20999px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F293793i1C5702CFB60C1A6E%2Fimage-size%2Flarge%3Fv%3Dv2%26amp%3Bpx%3D999%22%20role%3D%22button%22%20title%3D%22Yaniv_Carmel_3-1625582836608.png%22%20alt%3D%22Yaniv_Carmel_3-1625582836608.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%20data-contrast%3D%22auto%22%3EWhen%20the%20request%20is%20submitted%20successfully%2C%20you%20will%20see%20a%20green%20confirmation%20banner%20and%20the%20date%20of%20the%20last%20submission.%3C%2FSPAN%3E%3CSPAN%20data-ccp-props%3D%22%7B%26quot%3B201341983%26quot%3B%3A0%2C%26quot%3B335559739%26quot%3B%3A160%2C%26quot%3B335559740%26quot%3B%3A259%7D%22%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-center%22%20image-alt%3D%22Yaniv_Carmel_4-1625582836612.png%22%20style%3D%22width%3A%20999px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F293794iB69CFCE8F8F925A8%2Fimage-size%2Flarge%3Fv%3Dv2%26amp%3Bpx%3D999%22%20role%3D%22button%22%20title%3D%22Yaniv_Carmel_4-1625582836612.png%22%20alt%3D%22Yaniv_Carmel_4-1625582836612.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%20data-contrast%3D%22auto%22%3EYou%26nbsp%3Bcan%26nbsp%3Bfind%20the%20status%20of%20your%20request%20in%20the%20%E2%80%9CUser%20Actions%E2%80%9D%20tab.%20Expect%20the%20request%20to%20be%20approved%26nbsp%3Bshortly.%3C%2FSPAN%3E%3CSPAN%20data-ccp-props%3D%22%7B%26quot%3B201341983%26quot%3B%3A0%2C%26quot%3B335559739%26quot%3B%3A160%2C%26quot%3B335559740%26quot%3B%3A259%7D%22%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%20data-contrast%3D%22auto%22%3ENow%20that%20you%20have%20added%20your%20new%20devices%2C%20it%E2%80%99s%20a%20great%20time%20to%26nbsp%3B%3C%2FSPAN%3E%3CSTRONG%3E%3CSPAN%20data-contrast%3D%22auto%22%3Echeck%20out%20our%20new%20simulations%20for%26nbsp%3BCarbanak%26nbsp%3Band%20FIN7%3C%2FSPAN%3E%3C%2FSTRONG%3E%3CSPAN%20data-contrast%3D%22auto%22%3E%2C%3C%2FSPAN%3E%3CSTRONG%3E%3CSPAN%20data-contrast%3D%22auto%22%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FSTRONG%3E%3CSPAN%20data-contrast%3D%22auto%22%3Eas%20well%20as%26nbsp%3Bthe%3C%2FSPAN%3E%3CSTRONG%3E%3CSPAN%20data-contrast%3D%22auto%22%3E%26nbsp%3BSolarWinds%20Campaign%3C%2FSPAN%3E%3C%2FSTRONG%3E%3CSPAN%20data-contrast%3D%22auto%22%3E%2C%3C%2FSPAN%3E%3CSTRONG%3E%3CSPAN%20data-contrast%3D%22auto%22%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FSTRONG%3E%3CSPAN%20data-contrast%3D%22auto%22%3Eprovided%20by%26nbsp%3BSafeBreach!%3C%2FSPAN%3E%3CSPAN%20data-ccp-props%3D%22%7B%26quot%3B201341983%26quot%3B%3A0%2C%26quot%3B335559739%26quot%3B%3A160%2C%26quot%3B335559740%26quot%3B%3A259%7D%22%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%20data-contrast%3D%22auto%22%3EThese%20simulations%20allow%20you%20to%20evaluate%20Microsoft%20Defender%20for%20Endpoint%E2%80%99s%20detection%20and%20protection%20capabilities%20against%20a%20few%20of%20the%20most%20prominent%20threat%26nbsp%3Bactors%20these%20days.%3C%2FSPAN%3E%3CSPAN%20data-ccp-props%3D%22%7B%26quot%3B201341983%26quot%3B%3A0%2C%26quot%3B335559739%26quot%3B%3A160%2C%26quot%3B335559740%26quot%3B%3A259%7D%22%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%20data-contrast%3D%22auto%22%3ECarbanak%26nbsp%3Band%20FIN7%20are%26nbsp%3Bfinancially-motivated%26nbsp%3Bthreat%20groups%2C%20considered%20to%20be%20two%20of%20the%20most%20successful%20criminal%20hacking%20groups%20in%20the%20world%2C%20so%20much%20that%20they%20were%20chosen%20to%20be%20the%20subject%20of%26nbsp%3Bthe%20recent%20%3CA%20href%3D%22https%3A%2F%2Fwww.microsoft.com%2Fsecurity%2Fblog%2F2021%2F04%2F21%2Fmitre-engenuity-attck-evaluation-proves-microsoft-defender-for-endpoint-stops-advanced-attacks-across-platforms%2F%22%20target%3D%22_self%22%20rel%3D%22noopener%20noreferrer%22%3EMITRE%26nbsp%3BEngenuity%26nbsp%3BATT%26amp%3BCK%C2%AE%202021%3C%2FA%3E%20evaluation.%3C%2FSPAN%3E%3CSPAN%20data-ccp-props%3D%22%7B%26quot%3B201341983%26quot%3B%3A0%2C%26quot%3B335559739%26quot%3B%3A160%2C%26quot%3B335559740%26quot%3B%3A259%7D%22%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%20data-contrast%3D%22auto%22%3EThe%20SolarWinds%26nbsp%3BCampaign%26nbsp%3Bis%20a%20supply%20chain%20attack%20utilizing%20SolarWinds%E2%80%99%20popular%20network%20management%20software%20-%20SolarWinds%C2%AE%20Orion%C2%AE.%20This%20campaign%2C%20dubbed%20%E2%80%9Cthe%20largest%20and%20most%20sophisticated%20attack%20the%20world%20has%20ever%20seen%E2%80%9D%2C%20left%20tens%20of%20thousands%20of%20organizations%20vulnerable.%3C%2FSPAN%3E%3CSPAN%20data-ccp-props%3D%22%7B%26quot%3B201341983%26quot%3B%3A0%2C%26quot%3B335559739%26quot%3B%3A160%2C%26quot%3B335559740%26quot%3B%3A259%7D%22%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%20data-contrast%3D%22auto%22%3ETo%20run%20these%20simulations%2C%26nbsp%3Bnavigate%20to%20the%20%E2%80%9CTutorials%20%26amp%3B%20simulations%E2%80%9D%20section%2C%20choose%20a%20simulation%2C%20and%20click%20%E2%80%9Crun%E2%80%9D.%20Then%2C%20in%20the%20%E2%80%9CCreate%20simulation%E2%80%9D%20side%20panel%2C%20select%20a%20device%20and%20click%20on%20the%20%E2%80%9CCreate%20simulation%E2%80%9D%20button.%3C%2FSPAN%3E%3CSPAN%20data-ccp-props%3D%22%7B%26quot%3B201341983%26quot%3B%3A0%2C%26quot%3B335559739%26quot%3B%3A160%2C%26quot%3B335559740%26quot%3B%3A259%7D%22%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22Yaniv_Carmel_6-1625583450605.png%22%20style%3D%22width%3A%20999px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F293797iF77DEEC31AA4C259%2Fimage-size%2Flarge%3Fv%3Dv2%26amp%3Bpx%3D999%22%20role%3D%22button%22%20title%3D%22Yaniv_Carmel_6-1625583450605.png%22%20alt%3D%22Yaniv_Carmel_6-1625583450605.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%20data-contrast%3D%22auto%22%3ETo%20learn%20more%20about%26nbsp%3Bthe%20simulations%2C%20read%20the%20simulation%20documentation%3A%3C%2FSPAN%3E%3CSPAN%20data-ccp-props%3D%22%7B%26quot%3B201341983%26quot%3B%3A0%2C%26quot%3B335551550%26quot%3B%3A1%2C%26quot%3B335551620%26quot%3B%3A1%2C%26quot%3B335559739%26quot%3B%3A160%2C%26quot%3B335559740%26quot%3B%3A259%7D%22%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3CUL%3E%0A%3CLI%20data-leveltext%3D%22%EF%82%B7%22%20data-font%3D%22Symbol%22%20data-listid%3D%222%22%20aria-setsize%3D%22-1%22%20data-aria-posinset%3D%221%22%20data-aria-level%3D%221%22%3E%3CA%20href%3D%22https%3A%2F%2Faka.ms%2FEvaluation_CarbanakandFin7%22%20target%3D%22_self%22%20rel%3D%22noopener%20noreferrer%22%3E%3CSPAN%20data-contrast%3D%22auto%22%3ECarbanak%26nbsp%3Band%20FIN7%3C%2FSPAN%3E%3C%2FA%3E%3CSPAN%20data-ccp-props%3D%22%7B%26quot%3B134233279%26quot%3B%3Atrue%2C%26quot%3B201341983%26quot%3B%3A0%2C%26quot%3B335551550%26quot%3B%3A1%2C%26quot%3B335551620%26quot%3B%3A1%2C%26quot%3B335559737%26quot%3B%3A0%2C%26quot%3B335559739%26quot%3B%3A160%2C%26quot%3B335559740%26quot%3B%3A259%7D%22%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FLI%3E%0A%3CLI%20data-leveltext%3D%22%EF%82%B7%22%20data-font%3D%22Symbol%22%20data-listid%3D%222%22%20aria-setsize%3D%22-1%22%20data-aria-posinset%3D%222%22%20data-aria-level%3D%221%22%3E%3CA%20href%3D%22https%3A%2F%2Faka.ms%2FEvaluation_SolarwindsSimulation%22%20target%3D%22_self%22%20rel%3D%22noopener%20noreferrer%22%3E%3CSPAN%20data-contrast%3D%22auto%22%3ESolarWinds%20Campaign%3C%2FSPAN%3E%3C%2FA%3E%3C%2FLI%3E%0A%3C%2FUL%3E%3C%2FLINGO-BODY%3E%3CLINGO-TEASER%20id%3D%22lingo-teaser-2519691%22%20slang%3D%22en-US%22%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22evallab.png%22%20style%3D%22width%3A%20370px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F293799iB032F034A2DB5529%2Fimage-size%2Flarge%3Fv%3Dv2%26amp%3Bpx%3D999%22%20role%3D%22button%22%20title%3D%22evallab.png%22%20alt%3D%22evallab.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%20data-unlink%3D%22true%22%3E%3CSPAN%20data-contrast%3D%22auto%22%3EThe%26nbsp%3B%3C%2FSPAN%3E%3CSPAN%20data-contrast%3D%22none%22%3EEvaluation%20Lab%3C%2FSPAN%3E%3CSPAN%20data-contrast%3D%22auto%22%3E%26nbsp%3Bis%20growing%20with%20a%20new%20feature%20for%20device%20renewal%2C%20as%20well%20as%20two%20new%20simulations!%3C%2FSPAN%3E%3CSPAN%20data-ccp-props%3D%22%7B%26quot%3B201341983%26quot%3B%3A0%2C%26quot%3B335559739%26quot%3B%3A160%2C%26quot%3B335559740%26quot%3B%3A259%7D%22%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-TEASER%3E%3CLINGO-LABS%20id%3D%22lingo-labs-2519691%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EEvaluation%20lab%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2535267%22%20slang%3D%22en-US%22%3ERe%3A%20Evaluation%20lab%20updates%3A%20device%20renewal%20and%20new%20simulations%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2535267%22%20slang%3D%22en-US%22%3E%3CP%3EHere%20in%20techcommunity%20I%20read%20about%20a%20dev%20tenant%20that%20contains%20e5%20licenses%20which%20makes%20it%20ideal%20for%20testing%20new%20Features.%26nbsp%3B%20However%20it%20only%20contains%20defender%20not%20defender%20for%20endpoint.%20Could%20someone%20add%20this%20to%20the%20dev%20tenants%20e5%20licenses%3F%20This%20would%20be%20great%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2566142%22%20slang%3D%22en-US%22%3ERe%3A%20Evaluation%20lab%20updates%3A%20device%20renewal%20and%20new%20simulations%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2566142%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F1097021%22%20target%3D%22_blank%22%3E%40mailmonster%3C%2FA%3E%26nbsp%3BYou%20can%20add%2030%20days%20trial%20Full%20E5%20subscription%20for%2025%20Users%20from%20the%20admin%20portal%3A%26nbsp%3B%3C%2FP%3E%0A%3CP%3EBrowse%20to%20portal.office.com%20with%20your%20dev%20tenant%20credentials%20%26gt%3B%20Billing%20%26gt%3B%20Searching%20and%20selecting%20M365%20E5%20and%20select%20%22Start%20Trial%22.%26nbsp%3B%3CBR%20%2F%3EThere%20is%20no%20need%20for%20a%20credit%20card%20or%20any%20renewal%20commitment%2C%20just%20your%20mobile%20number%20for%20identity%20verification.%26nbsp%3B%3CBR%20%2F%3Ealternatively%2C%20you%20can%20ask%20your%20partner%20or%20account%20manager%20for%20a%20%22Demo%20Tenant%22%20for%2030%20days.%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E
Version history
Last update:
‎Jul 06 2021 08:20 AM
Updated by: