question

SMEExpert avatar image
0 Votes"
SMEExpert asked Givary-MSFT edited

Windows Defender (Security center API) - Vulnerable files export from recommendations(log4j) to Power BI

Hi team,

After logging in to "https://security.microsoft.com/security-recommendations" to know the recommendations, we could see the "Vulnerable Files" from the respective recommendation (Update Apache log4j).

we do have an option to "Export" the list of vulnerable files. 191196-image.png

Is there any way that we can programatically export this from API/Powershell?. I would need to add this info into PowerBI report and looking for a way to do it.

power-query-not-supportedazure-security-center
image.png (64.3 KiB)
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

Givary-MSFT avatar image
0 Votes"
Givary-MSFT answered Givary-MSFT edited

@SMEExpert

Apologies for the delay in answering this post. As I understand you are checking if there is a way to export (Vulnerable files) programmatically via API.

Refer to this article https://docs.microsoft.com/en-us/azure/defender-for-cloud/continuous-export?tabs=rest-api#:~:text=Configure%20continuous%20export%20using%20the%20REST%20API which talks about Configure continuous export using the REST API to any of the following destinations

Azure Event Hub
Log Analytics workspace
Azure Logic Apps

Reference:
https://docs.microsoft.com/en-us/rest/api/securitycenter/automations
https://techcommunity.microsoft.com/t5/microsoft-defender-for-cloud/exporting-vulnerability-assessment-results-in-microsoft-defender/ba-p/1212091
https://charbelnemnom.com/automate-and-enable-continuous-export-for-azure-security-center-with-azure-policy/

Let me know if you have any questions.


5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.