From the course: Managed Detection and Response (MDR) Advanced Strategies
Join today to access over 25,600 courses taught by industry experts.
Microsoft Defender for Endpoint in EDR
From the course: Managed Detection and Response (MDR) Advanced Strategies
Microsoft Defender for Endpoint in EDR
- [Instructor] As you can see, Microsoft Sentinel and also the Microsoft Defender capabilities work hand in hand to help us with incident response of all types. Now, of course, what's important here is to understand that Defender also supports endpoint detection and response as well. So to walk through this process, we will once again, come here to the Microsoft 365 Defender site, and I'm going to click into incidents on the left hand side. Now, we've been here before. We know this lists all of the specific incidents that have been created over the course of the past X number of days or months that we've selected. But what we're going to do here is simply just click the first one. We're not going to focus on breaking down anything, just straight into an incident. And I want to ignore everything else on this page except the investigations option. Now, when we go into the investigations option, what this does is this…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
-
-
-
(Locked)
Deploying and managing EDR solutions5m 30s
-
(Locked)
Response automation and orchestration5m 46s
-
(Locked)
Microsoft Defender for Endpoint in EDR4m 49s
-
(Locked)
Endpoint data analysis for incident response3m 41s
-
(Locked)
Network traffic analysis5m 37s
-
(Locked)
Response and containment strategies for Endpoint incidents7m 4s
-
(Locked)
Timely response considerations7m 3s
-
(Locked)
-
-