How to export payload domains and sender addresses from Attack simulation portal from M365 security defender? Is there way to get all those domains and sender addresses so that we can use for attack simulations based on our choice?

Vinod Survase 4,716 Reputation points
2023-05-05T17:13:40.5433333+00:00

How to export payload domains and sender addresses from Attack simulation portal from M365 security defender? Is there way to get all those domains and sender addresses so that we can use for attack simulations based on our choice and know that its the dummy domain used for running attack simulations.

Microsoft 365
Microsoft 365
Formerly Office 365, is a line of subscription services offered by Microsoft which adds to and includes the Microsoft Office product line.
4,131 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,238 questions
Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
169 questions
Microsoft Defender for Cloud Apps
Microsoft Defender for Cloud Apps
A Microsoft cloud access security broker that enables customers to control the access and use of software as a service apps in their organization.
117 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. VasimTamboli 4,785 Reputation points
    2023-05-07T10:51:08.6366667+00:00

    Yes, you can export payload domains and sender addresses from the Attack simulation portal in Microsoft 365 Defender. Here are the steps:

    1. Go to the Attack simulation portal in Microsoft 365 Defender.
    2. Click on the "Payload domains" or "Sender addresses" tab, depending on which one you want to export.
    3. Click on the "Export" button.
    4. Choose the format in which you want to export the data (CSV or JSON).
    5. Click on the "Export" button again.

    This will export all the payload domains or sender addresses in the selected format. You can then use this data for your own attack simulations. However, please note that these are real domains and addresses that have been used in previous simulations, and using them in your own simulations could potentially cause harm or unintended consequences. It is recommended to use caution and carefully review the data before using it for your own purposes.