Defender for Endpoint

Programmatically Updating Defender for Cloud Integration Settings and enabling the Unified Agent

by

Overview Defender for Cloud has several integrations with Microsoft’s security ecosystem. These integrations allow data sharing between Defender for Cloud Apps, Defender for Endpoint, and Microsoft Sentinel. Most of these integrations are enabled by default on subscriptions, however in some circumstances some of these settings may not be enabled. The most common setting not enabled … Read more

Reporting on Defender for Endpoint Agent Status

by

Report on Defender for Endpoint’s health across Defender 365 and Defender for Cloud

Estimating Defender 365 Event Size

by

If you are planning on exporting raw events from Defender 365 to your SIEM you can easily estimate the table sizes and number of entries in Defender 365 Advanced Hunting. Estimate All Table Sizes Estimated Sentinel Price Update the price variable based on your region from the Azure pricing calculator. Price = Sentinel + Log … Read more

What’s New in Microsoft Security — April Edition

by

What’s New in Microsoft Security

%d