Retrieving Windows Defender Exploit Guard Windows Event logs with PowerShell
Most of the features included in Windows Defender Exploit Guard can be enabled in audit or block mode. The impact can then be analyzed either by looking at the corresponding Windows Event log entries or through advanced hunting queries in Read More …