How to respond to masquerading alerts in Defender for Endpoint | Red Canary скачать в хорошем качестве

How to respond to masquerading alerts in Defender for Endpoint | Red Canary

Learn how to navigate through Defender's response action features including Live Response and the Alert Timeline. In part two of the "Investigating masquerading in Defender for Endpoint" series, we’ll show how you can leverage features Live Response and the Alert Timeline work toward resolving alerts or incidents. The videos in this series cover the following topics: Video 1: Triaging and investigating alerts in Defender for Endpoint so you know what to look for and where to find it Video 2: Built in response actions and how to use them so you know what you can do in response to an alert or incident Video 3: Generating Kusto queries, hunting for related activity, and leveraging the Advanced Hunting API ------ About the Red Canary Crash Course on Defender for Endpoint In this collection of videos, you’ll learn how to simulate some of the most prevalent ATT&CK techniques in an environment protected by Microsoft Defender for Endpoint. Get ready to triage, investigate, respond, and hunt with experts from Red Canary. -------- For more information on how Red Canary and Microsoft Defender for Endpoint work better together visit: https://redcanary.com/products/mdr-fo... As your security ally, Red Canary enables your team to focus on the highest priority security issues impacting your business. By removing your need to build and manage a threat detection operation, we help you focus on running your business securely and successfully. Our Security Operations Platform delivers threat detection, hunting, and response—driven by human expert analysis and guidance—applied across your endpoints, cloud, and network security. #RedCanary | #AtomicRedTeam | #MicrosoftDefenderForEndpoint