New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[FR] Develop Responder for Microsoft Defender for Endpoint #908

Closed

korteke opened this issue Nov 23, 2020 · 0 comments · Fixed by #909

Assignees

Labels

category:new-responder

Milestone

Contributor

korteke commented Nov 23, 2020 •

edited

Loading

Feature description
I've started develop responder for MS defender for endpoints (formerly known as Microsoft ATP) that will:

Isolate victims machine by ip-address --> machineId
Push IoC's to ATP client
Run antivirus scan

Describe the solution you'd like
Responder is going to utilize Microsoft ATP API's

korteke mentioned this issue

New responder for Microsoft defender for Endpoints #909

Merged

jeromeleonard linked a pull request

that will close this issue

New responder for Microsoft defender for Endpoints #909

Merged

jeromeleonard added this to the 3.1.0 milestone

jeromeleonard added the category:new-responder label

jeromeleonard self-assigned this

jeromeleonard closed this as completed

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment