Disclaimer: The information posted in this blog and on this website are not necessarily reflective of the views or recommendations of Microsoft. Though I am an employee of Microsoft, this is considered a personal project of mine that is not intended to be a recommendation or guide from Microsoft the company. I take no responsibilityContinue reading “Automate MDE Custom Indicators with PowerShell”
Category Archives: Microsoft 365 Defender API
Automate IOC Expiry Reports with Power Automate and Microsoft Defender for Endpoint
Disclaimer: The information posted in this blog and on this website are not necessarily reflective of the views or recommendations of Microsoft. Though I am an employee of Microsoft at the time of writing, this is considered a personal project of mine that is not intended to be a recommendation or guide from Microsoft the company.Continue reading “Automate IOC Expiry Reports with Power Automate and Microsoft Defender for Endpoint”
MDE Kit – A PowerShell Module for Microsoft Defender for Endpoint
Disclaimer: The information posted in this blog and on this website are not necessarily reflective of the views or recommendations of Microsoft. Though I am an employee of Microsoft, this is considered a personal project of mine that is not intended to be a recommendation or guide from Microsoft the company. I take no responsibilityContinue reading “MDE Kit – A PowerShell Module for Microsoft Defender for Endpoint”
Creating Custom Email Reports with Advanced Hunting and Power Automate
Disclaimer: The information posted in this blog and on this website are not necessarily reflective of the views or recommendations of Microsoft. Though I am an employee of Microsoft, this is considered a personal project of mine that is not intended to be a recommendation or guide from Microsoft the company. Introduction In this blog postContinue reading “Creating Custom Email Reports with Advanced Hunting and Power Automate”
Taking Actions on MDE Devices via PowerShell and MDE API
Disclaimer: The information posted in this blog and on this website are not necessarily reflective of the views or recommendations of Microsoft. Though I am an employee of Microsoft, this is considered a personal project of mine that is not intended to be a recommendation or guide from Microsoft the company. I take no responsibility forContinue reading “Taking Actions on MDE Devices via PowerShell and MDE API”
Advanced Hunting with the M365 Defender API
This blog describes how to use the Microsoft 365 Defender API to programmatically run advanced hunting queries in PowerShell and includes working code. The Microsoft 365 Defender API can be confusing to many people and creating a script such as the one described in this blog is often difficult to do without a proper understandingContinue reading “Advanced Hunting with the M365 Defender API”
Security Occupied 