Welcome to the Microsoft Defender for Cloud (formerly known as Azure Security Center) community repository. This repository contains:
- Security recommendations that are in private preview
- Programmatic remediation tools for security recommendations
- PowerShell scripts for programmatic management
- Azure Policy custom definitions for at-scale management of Microsoft Defender for Cloud
- Logic App templates that work with Defender for Cloud's Logic App connectors (to automate response to Security alerts and recommendations)
- Logic App templates that help you run regular tasks or reports within the scope of Microsoft Defender for Cloud
- Custom workbooks to visualize Defender for Cloud data
All of the above will help you work programmatically at scale with Microsoft Defender for Cloud and provide you additional value to secure your environment, some of which has not yet been embedded into the product (yet). You can submit any questions or requests here.
Please find the latest and greatest automations on our What's New Page.
All automations within this repository are provided as is, without SLA or official support. However, if you have an issue please fill out a bug report and reference the automation artifact, so the community can try to solve it.
This project has its own Wiki which will provide you with further information about the Microsoft Defender for Cloud community, how to contribute, templates to use, and further resources.
Please visit the following additional resources to learn more about Microsoft Defender for Cloud and participate in discussions:
- Microsoft Defender for Cloud Forum
- Microsoft Defender for Cloud Blog
- Microsoft Defender for Cloud Feature suggestion
- Microsoft Defender for Cloud documentation
- Microsoft Defender for Cloud API documentation
This project welcomes contributions and suggestions. Most contributions require you to agree to a Contributor License Agreement (CLA) declaring that you have the right to, and actually do, grant us the rights to use your contribution. For details, visit https://cla.microsoft.com.
Anyone can contribute to this repo, you don't need to be a pro. You have an interesting Logic App, Policy, or other automation artifact? Then fork this repo, add your content to your fork and submit a pull request.
To make sure your contribution aligns with our Contribution Guideline, please make sure to review it before submitting.
- After you push your changes, you will need to submit the Pull Request (PR).
- After submission, check the Pull Request for comments.
- Make changes as suggested and update your branch or explain why no change is needed. Resolve the comment when done.
When you submit a pull request, a CLA-bot will automatically determine whether you need to provide a CLA and decorate the PR appropriately (e.g., label, comment). Simply follow the instructions provided by the bot. You will only need to do this once across all repos using our CLA.
This project has adopted the Microsoft Open Source Code of Conduct. For more information see the Code of Conduct FAQ or contact opencode@microsoft.com with any additional questions or comments.