Skip to content

Latest commit

 

History

History
16 lines (15 loc) · 508 Bytes

Devices-With-Recent-Exploitable-Vulnerability.md

File metadata and controls

16 lines (15 loc) · 508 Bytes

Devices with a recent vulnerability that is exploitable


Defender For Endpoint

let timeframe = 30d; //Customizable h = hours, d = days
let ExploitableVulnerabilities = materialize 
(DeviceTvmSoftwareVulnerabilitiesKB
     | where IsExploitAvailable == 1
     | where PublishedDate > (now() - timeframe)
     | project CveId);
DeviceTvmSoftwareVulnerabilities
| join ExploitableVulnerabilities on CveId
| summarize count(), ExploitableCVE = make_set(CveId) by DeviceName
| top 10 by count_