Microsoft Defender for Endpoint custom auditing alerts
As mentioned in one of my previous post about the new auditing logs introduced in Microsoft Defender for Endpoint, I validated and tested several new custom detections that could add great value to your current detections. Custom detection to Sentinel I’m a big fan of using the power and flexibility of Sentinel. The current rules […]