Skip to main content

Microsoft 365 Defender

Microsoft 365 Defender is a unified pre- and post-breach enterprise defense suite that natively coordinates detection, prevention, investigation, and response across endpoints, identities, email, and applications to provide integrated protection against sophisticated attacks.

With the Microsoft 365 Defender content pack, you can determine how a threat entered your environment and what part of your organization is affected.

What does this pack do?

  • Get the most recent incidents that is a collection of correlated alerts and associated data.
  • Enables you to hunt for both known and potential threats.


Cortex XSOAR


CertificationRead more
Supported ByCortex XSOAR
CreatedMay 25, 2021
Last ReleaseAugust 9, 2022

Content packs are licensed by the Publisher identified above and subject to the Publisher’s own licensing terms. Palo Alto Networks is not liable for and does not warrant or support any content pack produced by a third-party Publisher, whether or not such packs are designated as “Palo Alto Networks-certified” or otherwise. For more information, see the Marketplace documentation.