Step 6. Investigate and respond using Microsoft Defender XDR in a pilot environment
Applies to:
- Microsoft Defender XDR
This article outlines the process to create incidents with attack simulations and tutorials and use Microsoft Defender XDR to investigate and respond. Before starting this process, be sure you've reviewed the overall process for evaluating Microsoft Defender XDR and you have created the Microsoft Defender XDR evaluation environment.
Use the following steps.
The following table describes the steps in the illustration.
| Step | Description |
|---|---|
| 1. Simulate attacks | Simulate attacks on your evaluation environment and use the Microsoft Defender portal to perform incident response. |
| 2. Try incident response capabilities | Try additional incident response features and capabilities in Microsoft Defender XDR. |
Navigation you may need
Create the Microsoft Defender XDR Evaluation Environment
Tip
Do you want to learn more? Engage with the Microsoft Security community in our Tech Community: Microsoft Defender XDR Tech Community.
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for