Search

MC559251 – Update your custom detections to leverage new ActionTypes in DeviceNetworkEvents (archived)

cloudscout.one Icon

check before: 2023-06-06

Product:

Defender, Microsoft 365 Defender

Platform:

World tenant, Online

Status:

Change type:

Admin impact, Retirement

Links:

Details:

On July 18, 2023, Microsoft will be retiring a subset of signatures found in the "NetworkSignaturesInspected" action type of Advanced Hunting. With the recent integration of Zeek providing advanced protocol parsing capabilities, which result in better visibility into full network sessions compared to the raw packet bytes found in the "NetworkSignaturesInspected" action type of Advanced Hunting today, the effort to consolidate will provide a better overall experience for our customers by reducing the signatures that serve similar functions without the added benefits provided by the new Zeek alternative.
[When this will happen:]
July 18, 2023

Change Category:
XXXXXXX ...

Scope:
XXXXXXX ...

Release Phase:

Created:
2023-05-23

updated:
2023-05-23

the free basic plan is required to see all details. Sign up here


A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.


Last updated 6 months ago

Share to MS Teams

Login to your account

Welcome Back, We Missed You!