Azure-Sentinel icon indicating copy to clipboard operation
Azure-Sentinel copied to clipboard
verified publisher icon Azure

AttackSurfaceReduction

Open DanielChronlund opened this issue 3 years ago • 1 comments

Change(s):

  • Added a new workbook called 'AttackSurfaceReduction'.

Reason for Change(s):

  • This workbook helps you implement the ASR rules of Windows/Defender, and to monitor them over time. The workbook can filter on rules in Audit mode and Block mode. Please see details on my blog: https://danielchronlund.com/2022/06/15/attack-surface-reduction-dashboard-for-microsoft-sentinel/

Version Updated:

  • No

Testing Completed:

  • Yes

Checked that the validations are passing and have addressed any issues that are present:

  • Yes

DanielChronlund avatar Jun 28 '22 13:06 DanielChronlund

CLA assistant check
All CLA requirements met.

microsoft-cla-retired[bot] avatar Jun 28 '22 13:06 microsoft-cla-retired[bot]

Hey @DanielChronlund, can you please quickly change this, so we can proceed to merge, thanks.

v-sabiraj avatar Sep 08 '22 06:09 v-sabiraj

Yes, I'm currently travelling but I will change this first thing tomorrow Friday.

Den tors 8 sep. 2022 08:18v-sabiraj @.***> skrev:

Hey @DanielChronlund https://github.com/DanielChronlund, can you please quickly change this, so we can proceed to merge, thanks.

— Reply to this email directly, view it on GitHub https://github.com/Azure/Azure-Sentinel/pull/5488#issuecomment-1240272186, or unsubscribe https://github.com/notifications/unsubscribe-auth/ARVWSAGJN3YKLHXNVTKNXCDV5GAJ7ANCNFSM52CE2WRQ . You are receiving this because you were mentioned.Message ID: @.***>

DanielChronlund avatar Sep 08 '22 06:09 DanielChronlund

Thanks @DanielChronlund Please let us know once done. Thanks

NikTripathi avatar Sep 08 '22 20:09 NikTripathi