Linux – SEC-LABS R&D

Live response is GA for Linux and macOS

SEC-LABS R&D 2023-03-01 0 Comments

Live response is designed to enhance investigations by enabling your security operations team to collect forensic data, run scripts, send suspicious entities for analysis, remediate threats, and proactively hunt for emerging threats.

Capabilities

Run basic and advanced commands to do investigative work on a device.
Download files such as malware samples and outcomes of PowerShell scripts.
Download files in the background (new!).
Upload a PowerShell script or executable to the library and run it on a device from a tenant level.
Take or undo remediation actions.

Requirements

macOS – Minimum required version: 101.43.84. Supported for Intel-based and ARM-based macOS devices.
Linux – Minimum required version: 101.45.13

Happy Hunting

Respond, Security

Linux, Live Response, macOS, MDE, Microsoft 365 Defender

Defender ATP to Linux – available next year

SEC-LABS R&D 2019-11-05 0 Comments

During Ignite Microsoft announces Defender ATP for Linux is coming next year

Defender ATP for Linux coming next year #MDATP #Security #MSIgnite pic.twitter.com/mOMSRwJJKz
— Stefan Schörling (@stefanschorling) November 4, 2019

Extending Defender ATP to be able to natively support Windows, Mac and Linux is great news and will simplify advanced threat management across the environment.

Happy Hunting!

Detect, News

Defender ATP, Linux, ThreatHunting

Tag Archive: Linux

Live response is GA for Linux and macOS

Defender ATP to Linux – available next year