Microsoft Entra Suite Tech Accelerator
Aug 14 2024, 07:00 AM - 09:30 AM (PDT)
Microsoft Tech Community

Custom Rules for Defender

Copper Contributor

Hello!

 

Does defender have an option to deploy custom queries and rules via GitHub like Sentinel? Or is there a way to use API calls, notebooks, playbooks etc? Or even bulk upload custom rules through a file? 

I’m just shocked that I can’t find a way to create rules and queries in a more efficient way. Any advise would be really appreciated!

0 Replies