Episode

Binary drift detection in Defender for Containers | Defender for Cloud in the Field

In this episode of Defender for Cloud in the Field, Eyal Gur joins Yuri Diogenes to talk about Binary drift detection in Defender for Containers. Eyal explain what binary drift is, why this is an important event to monitor and how you can create policies in Defender for Container to manage drift detection alerts. Eyal also demonstrates how to create policies, the logic behind the policy and how to visualize the alerts in Defender for Cloud and in Microsoft XDR.

Chapters

01:49 - What is binary drift
03:35 - What needs to be enable for this feature to work in Defender for Containers?
04:32 - What configuration needs to be done?
05:23 - How the settings are propagated in the backend?
06:00 - What customers should do if they receive a binary drift alert?
08:30 - Demonstration

Recommended resources

Learn more
Learn even more
Subscribe to Microsoft Security on YouTube
Join our Tech Community
For more about Microsoft Security

Connect

Microsoft Security | Twitter: @msftsecurity | LinkedIn: /in/microsoft-security

Chapters

01:49 - What is binary drift
03:35 - What needs to be enable for this feature to work in Defender for Containers?
04:32 - What configuration needs to be done?
05:23 - How the settings are propagated in the backend?
06:00 - What customers should do if they receive a binary drift alert?
08:30 - Demonstration

Recommended resources

Learn more
Learn even more
Subscribe to Microsoft Security on YouTube
Join our Tech Community
For more about Microsoft Security

Connect

Microsoft Security | Twitter: @msftsecurity | LinkedIn: /in/microsoft-security

Have feedback? Submit an issue here.