In this blog, we cover how attackers silence Microsoft Defender EDR using tools like EDRSilencer, and how to detect these attacks with key event IDs and an Azure Logic App that monitors device log activity.

In this blog you learn how to build a Logic App that automatically sends email notifications when a Microsoft Sentinel incident is triggered. This guide will show you how to make your alerting game smarter, faster, and way less manual, all with a bit of Azure magic.