Monitoring Windows Defender Malware Detections
joseph.foran
Member Posts: 2 ✭
We have a few remote workers who use their own devices at home (because all of our corporate resources are cloud-hosted and don't really interact with the operating system) but we need to provide help and support for printers and such - and we monitor their system security. We use this nice little custom alert to monitor Windows Defender detections and so far it's proven remarkably effective:
*For those wanting to copy paste it's Microsoft-Windows-Windows Defender/Operational for the Custom Folder and 1006,1007,1013,1015,1116,1117,1118 for the event IDs
Tagged:
0
Topics
- All Topics
- 60 Getting started
- 27 Read before posting
- 9 Meet and greet
- 316 General
- 73 News and announcements
- 2 Swag
- 5 Roadmap updates
- 1 Product Survey
- 94 Resources
- 17 Knowledge Base
- 18 Webinars
- 1 Shared Script Library
- 3 Blog
- 23 Pro Tips
- 30 Got an idea?
- 3 Atera Academy
- 8 ActionAI
- 5 Copilot
- 219 Remote Monitoring and Management
- 89 Remote Monitoring
- 29 Patch Management
- 118 Professional Services Automation
- 70 Helpdesk
- 18 Billing
- 24 Reporting
- 43 Integrations & add-ons
- 23 Integrations
- 11 Add-ons
- 113 Scripting and automations
- 62 Scripts
- 36 Automations