Aug 28 2020 06:53 AM
@aussupport You can start with the Security alert lab at https://docs.microsoft.com/en-us/azure-advanced-threat-protection/atp-playbook-lab-overview
Aug 29 2020 11:53 PM
@Or Tsemah This is in Lab Environment. i just looking some simple Powershell or some scripts to run on production and monitor the behavior.
Aug 30 2020 01:13 AM
Solution@aussupport This is exactly what this guide is for, for example, you can check out the commands in the reconnaissance playbook to trigger alerts.