🛡️M365 Defender

This is my attempt on writing and learning about Microsoft Defender. I’ve been meaning to write about this since some time now and I guess this is the best time to do that as the importance of Security has been recognized than ever.

To start things off the main focus of the series is Microsoft Defender for Endpoint (MDE) as that has many features to talk about and many more are added literally everyday.

I would also like to focus on KQL (Kusto Query Language) as that is becoming the norm and able to provide more insights to Security admins.

I hope this series will be informative and will help you to learn something new.

Unpacking Defender for Endpoint Licensing

April 17, 2024April 23, 2024

How a Synthetic Registration in Entra ID Can Protect the Devices ASAP with Defender for Endpoint?

February 1, 2024February 1, 2024

Microsoft Defender for Endpoint – Passive Mode

August 23, 2023

Quick Defender SmartScreen Deep Dive with Niklas Tinner

August 16, 2023

How to Track Devices with a Faulty MDE Sensor Health State, Using a Logic App Workflow?

July 29, 2023July 29, 2023

How to Enable the New Security Settings Management Feature in Defender Security Portal

July 15, 2023July 30, 2023

Microsoft Defender SmartScreen Deep Dive

December 14, 2022June 13, 2023

New and Updated Microsoft Intune Device Control Policy Settings

November 1, 2022November 1, 2022

Configure “Enhanced Phishing Protection in Microsoft Defender SmartScreen” in Windows 11 22H2 via Endpoint Manager

September 25, 2022October 16, 2022

Microsoft Intune and Defender for Endpoint Relationship Simplified

September 9, 2022March 27, 2023

Microsoft 365 Defender – Advanced Threat Hunting Basics

July 17, 2022November 18, 2023

An Attempt to Configure Defender for Endpoint and Endpoint Manager With the Same Device Tag

July 1, 2022October 16, 2022

Web Content Filtering with Microsoft Defender for Endpoint Advanced Features

June 17, 2022October 16, 2022

Microsoft Defender for Identity – Install and Configure Sensors (Azure ATP Sensors)

April 10, 2022October 16, 2022

How To Set Defender For Endpoint To Work In Parallel When Defender Is Not The Primary A/V In The Workstation/ Server

February 28, 2022

How to Configure Attack Surface Reduction (ASR) Rules using MEM

February 23, 2022February 24, 2022

I’ve completed the MDE Ninja Training and it was great! (my thoughts and experience)

January 27, 2022May 29, 2022

How to Onboard Windows Devices to Microsoft Defender for Endpoint

January 26, 2022July 13, 2022

How to configure Microsoft Defender for Endpoint Advanced Features

January 21, 2022February 24, 2022

Security Microsoft Defender for Endpoint Roles and Device Group Access

January 19, 2022February 24, 2022

Introduction to Microsoft Defender for Endpoint

January 16, 2022February 24, 2022