Windows 10: Defender ATP Multiple questions Rules/Definitions list, indicators, advanced hunting

Discus and support Defender ATP Multiple questions Rules/Definitions list, indicators, advanced hunting in AntiVirus, Firewalls and System Security to solve the problem; Hello, 1 Is it possible to getread the list of active defender rules/definitions? For example, the list of all file hashes that defender checks for?... Discussion in 'AntiVirus, Firewalls and System Security' started by Chaturvedula, May 15, 2020.

  1. CHATURVEDULA
    Chaturvedula Win User

    Defender ATP Multiple questions Rules/Definitions list, indicators, advanced hunting


    Hello,

    1 Is it possible to getread the list of active defender rules/definitions? For example, the list of all file hashes that defender checks for? Or all the malware/virus samples defender already has protection for. I can search from the securitycenter but doing for each individual case is cumbersome.


    2 What is difference between adding an IOC to "Rules -> Indicators" and checking for the same through an advanced hunting query ?


    Thanks.

    :)
     
    Chaturvedula, May 15, 2020
    #1
  2. NARESH_K
    Naresh_K Win User

    Defender ATP

    Hi,



    Thank you for writing to Microsoft Community Forums.



    Usually we do not suggest to disable Windows Defender feature, Windows Defender ATP protects endpoints from cyber threats; detects advanced attacks and data breaches, automates security incidents, and improves security posture. However, if you
    still wish to disable it, please follow the steps mentioned below and check if it helps:

    1. Open Windows Settings (Windows key + I).
    2. Then click on Updates & Settings.
    3. Then click on Windows Security.
    4. You can disable Cloud based and automatic submissions.

    If you need any additional assistance, then please write back with the following information:

    1. What is the exact error message which you are getting?
    2. Is the issue specific to an application?
    3. Could you please
      post a screenshot for a better understanding?


    Regards,
     
    Naresh_K, May 15, 2020
    #2
  3. SKY PEI PLUS1
    Sky Pei Plus1 Win User
    Windows Defender Advanced Threat Protction (ATP)

    Hi Experts,

    I'd like to know how to buy Windows Defender Advanced Threat Protction (ATP) ?
     
    Sky Pei Plus1, May 15, 2020
    #3
  4. PUBLICMICRO
    PublicMicro Win User

    Defender ATP Multiple questions Rules/Definitions list, indicators, advanced hunting

    How to setup window defender ATP?

    I would like to know on how to setup window defender ATP

    Does anyone have any suggestions?

    Thanks in advance for any suggestions
     
    PublicMicro, May 15, 2020
    #4
Thema:

Defender ATP Multiple questions Rules/Definitions list, indicators, advanced hunting

Loading...

  1. Defender ATP Multiple questions Rules/Definitions list, indicators, advanced hunting - Similar Threads - Defender ATP Multiple

  2. Disabling Defender ATP

    in Windows 10 Software and Apps
    Disabling Defender ATP: Hi, I am struggling with disabling Windows Defender ATP, once I try to disable it from the settings turn off real-time protection, I am unable to do so because of tamper protection, it says that this setting is managed by your administrator, and I am not able to turn off...

  3. Disabling Defender ATP

    in Windows 10 Gaming
    Disabling Defender ATP: Hi, I am struggling with disabling Windows Defender ATP, once I try to disable it from the settings turn off real-time protection, I am unable to do so because of tamper protection, it says that this setting is managed by your administrator, and I am not able to turn off...

  4. ATP - Advance hunting queries

    in AntiVirus, Firewalls and System Security
    ATP - Advance hunting queries: HI Team,Can you please help me to find the Advance hunting query for the below requirementantimalware client version for specific OS versionRegards,Harish https://answers.microsoft.com/en-us/protect/forum/all/atp-advance-hunting-queries/06fff286-47df-4804-a056-00675a0cdcb7

  5. Defender ATP Analysis

    in AntiVirus, Firewalls and System Security
    Defender ATP Analysis: Is the analysis ie alerting and blocking happening on the endpoints laptops, desktops or in the ATP Cloud console? If the analysis is occurring on the endpoints, will it cause performance issues on all endpoints if it is deployed across ~15,000 devices? If that's the case,...

  6. Windows Defender Firewall, advanced settings, filter rules

    in Windows 10 Customization
    Windows Defender Firewall, advanced settings, filter rules: What should the settings be for the filter ? It has a New Rule, It has Filter Profile, There is a Filter State, There is a View and a Refresh ! Then there is an Export list with a Help listing under that ? This is for the Connection Activity Rule Actions . I don,t believe...

  7. Defender ATP

    in AntiVirus, Firewalls and System Security
    Defender ATP: I tried to submit a question, but it would not let me submit it. What good does it do to have this system if it won't work. Why am I, as an individual home computer user, subject to the strict regulations of Defender ATP? I cannot connect to links that are provided in...

  8. Windows Defender Advanced Threat Protction (ATP)

    in AntiVirus, Firewalls and System Security
    Windows Defender Advanced Threat Protction (ATP): Hi Experts, I'd like to know how to buy Windows Defender Advanced Threat Protction (ATP) ? https://answers.microsoft.com/en-us/windows/forum/windows_10-security/windows-defender-advanced-threat-protction-atp/d8a231c8-0c07-40a6-bd1c-2c1d73a38139"

  9. Windows Defender Advanced Threat Protection (ATP) - for consumers?

    in AntiVirus, Firewalls and System Security
    Windows Defender Advanced Threat Protection (ATP) - for consumers?: Just wondering if there is any way that consumers like us can enroll in this service? WDATP - Windows Defender Advanced Threat Protection 58037

  10. Windows Defender definition update question

    in AntiVirus, Firewalls and System Security
    Windows Defender definition update question: Hi, Two days ago in Reliability history I got a warning...Definition Update for Windows Defender Antivirus KB2267602 (Definition 1.263.83.0)... Failed Windows Update. When I selected the Technical Details for the warning the installation failure error code given for the...