Defender ATP Multiple questions (Rules/Definitions list, indicators, advanced hunting)

Thread starter Chaturvedula
Start date May 15, 2020

May 15, 2020

Chaturvedula

Guest

Hello,

1) Is it possible to get(read) the list of active defender rules/definitions? For example, the list of all file hashes that defender checks for? Or all the malware/virus samples defender already has protection for. I can search from the securitycenter but doing for each individual case is cumbersome.

2) What is difference between adding an IOC to "Rules -> Indicators" and checking for the same through an advanced hunting query ?

Thanks.

More...

Similar threads

Microsoft Defender ATP User Licenses

Replies: 0

Views: 129

Feb 25, 2020

JasonC_BA

Windows Defender Fails to Start Event 5008

Replies: 0

Views: 160

Feb 16, 2020

spartan223193

Windows Defender not working or updating

minecrafter2973
Jun 4, 2019
Computer Security

Replies: 0

Views: 118

Jun 4, 2019

minecrafter2973

Microsoft’s Cyber Defense Operations Center shares best practices

Replies: 0

Views: 269

Jan 23, 2019

MSRC Team

Ransomware hit on 12-05-2018 & has plagued me ever since! Advice needed, please!

Replies: 0

Views: 107

Mar 31, 2019

LadyOpaque

Facebook X (Twitter) LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.

Accept Learn more…

Back

Top