Live response is GA for Linux and macOS
Live response is designed to enhance investigations by enabling your security operations team to collect forensic data, run scripts, send suspicious entities for analysis, remediate threats, and proactively hunt for emerging threats.
Capabilities
- Run basic and advanced commands to do investigative work on a device.
- Download files such as malware samples and outcomes of PowerShell scripts.
- Download files in the background (new!).
- Upload a PowerShell script or executable to the library and run it on a device from a tenant level.
- Take or undo remediation actions.
Requirements
- macOS – Minimum required version: 101.43.84. Supported for Intel-based and ARM-based macOS devices.
- Linux – Minimum required version: 101.45.13

Happy Hunting