- MDE Attack Surface Reduction Rules Report
- MDE Controlled Folder Access Report
- MDE Device Control Events
- MDE Device Network and IP Information Report
- MDE Endpoint Agent Health Status Report
- MDE Exploit Protection Report
- MDE Threat and Vulnerability Management (TVM) SCID Overview
- MDAV Scan Status
- MDAV Status Overview
- SmartScreen
- Network Protection
gh-andrem/DefenderXDR-AdvancedHunting
Defender XDR Advanced Hunting Queries (MDE, MDAV, Device Discovery)
PowerShellMIT