What is Microsoft Defender External Attack Surface Management (MDEASM)?
Microsoft Defender External Attack Surface Management (MDEASM) continuously discovers and maps your digital attack surface to provide an external view of your online infrastructure. This visibility enables security and IT teams to identify unknowns, prioritize risk, eliminate threats, and extend vulnerability and exposure control beyond the firewall. Attack Surface Insights are generated by leveraging vulnerability and infrastructure data to showcase the key areas of concern for your organization.
Plugin Key Features
Copilot for Security can surface insights from MDEASM about an organization's attack surface. Copilot users can use the standalone features built into Copilot for Security and use prompts to get more information. This information can help users understand their security posture and mitigate vulnerabilities.
Copilot Experiences
Standalone
Skills
- Get assets impacted by CVE
- Identify the assets a CVE impacts, their details, and when they were observed.
- Get assets impacted by CVSS
- Identify the assets a CVSS score impacts, their details, and when they were observed.
- Get attack surface insights
- Learn about high, medium, or low priority insights impacting attack surfaces.
- Get attack surface summary
- Discover what assets are in an attack surface.
- Get expired domains
- Learn about expired domains, their details, and assets for attack surfaces.
- Get expired SSL certificates
- Learn about expired SSL certificates, their details, and assets for attack surfaces.
- Get Microsoft Defender EASM general information
- Learn about Microsoft Defender EASM features, data, and other details.
- Get SSL certificates using SHA-1
- Learn about SSL certificates using SHA-1, their details, and associated assets.
Sample Prompts
- Please find our sample prompts published in our GitHub repository.
Embedded
Microsoft Copilot for Security does not offer an embedded experience with Microsoft Defender External Attack Surface Management currently. Stay tuned for feature updates as they come!
Additional resources
- Security Copilot (preview) and Defender EASM | Microsoft Learn
- Get visibility into your curated external assets with enhanced generative AI capabilities - Microsoft Community Hub
- Microsoft Defender External Attack Surface Management Ninja Training
Learn more about Copilot for Security
To learn more about Microsoft Copilot for Security, visit aka.ms/CopilotForSecurity or contact your Microsoft sales representative. If you missed us at Microsoft Secure, you may watch the replay video.