Targets to Live-Response actions in Defender ATP

Copper Contributor

Hi! Today windows defender one of the best solution for protect endpoint. But I think we have not enough live-response targets in action center. From this link we can find all targets.

I didn’t have enough yesterday additional targets. 
For example
It would also be very helpful to collect MFT


1 Reply


Hi there,


Are you aware of the newly released "Live Response" feature in MDATP?

With this feature you can perform a wide variety of forensic activities remotely on a machine, including running any PS script which allows you to extend to a lot of additional actions, including e.g. collecting the MFT. Hope this helps!