Reputation: 21
How to generate test alert/incident in "Microsoft 365 Defender" portal for test purpose?
I want to generate test alert in "Microsoft 365 Defender" portal. I have tried to login "portal.azure.com" and "outlook.office.com" from tor browser; and I was expecting an alert to be triggered (which isn't of course). any other way possible to test/generate Incident/Alert ?
Upvotes: 2
Views: 1236
Answers (1)
Reputation: 48
Probably you already found the answer but I was looking for similar thing and found this on reddit
You need to onboard a device. Use attack simulation files or drop an EICAR file on the onboarded device.
I tried using https://www.wicar.org/test-malware.html and create an alert for malware link detection when sent via email
I format the email that contains a body like: http://malware.wicar.org/data/ms14_064_ole_xp.html and sent it via gmail, since other email providers block the link before it is sent.
Upvotes: 0
Related Questions
- Script based Azure Alerts
- Sending alert by analyzing Azure logs
- How can i trigger an azure monitoring alert manually?
- Creating an Azure Alert Rule for a Webtest with Terraform (or ARM template)?
- Alerts for exceptions in an Azure worker role
- How can I create an azure customMetric alert for an alert that has never fired?
- Send Test Automation Report on Azure DevOps
- How to write a webtest with new alert in azure resource template?
- Creating alerts for specific exceptions with Application Insight (Microsoft Azure)
- Alert is not fired or Action Group is not executed. How to investigate?