Windows Defender Threat Detection

Published: Sep 7, 2021 by Bertland Hope

Gather active and past malware threats that Windows Defender detected in the system using the built-in cmdlet Get-MpThreatDetection found in the defender module. By default the Get-MpThreatDetection command will generate no output if there is no active or history of threats. This isn’t very helpful in generating reports since you’ll have no output to generate any reports. Once deployed, utilize an eicar text file to generate a false positive and base your reports on that output.

Requirements

  • Windows 10/Server 2016 or higher

  • The Windows Defender service must be running

    if (-Not(Get-Command Get-MpThreatDetection -ErrorAction SilentlyContinue)) { throw “Unable to find Get-MpThreatDetection. Available on Windows 10/Server 2016 or higher” }

    $DefenderStatus = (Get-Service WinDefend -ErrorAction SilentlyContinue).Status

    if ($DefenderStatus -ne “Running”) { throw “The Windows Defender service is not currently running” }

    Get-MpThreatDetection

Share

Latest News

10 Ways the ICT Performance Boost for Vision 2030 Jamaica Can Save You Money!
10 Ways the ICT Performance Boost for Vision 2030 Jamaica Can Save You Money!

10 Ways the ICT Performance Boost for Vision 2030 Jamaica Can Save You Money

Read more

Published: Mar 25, 2023

What is a Constellation?
What is a Constellation?

What is a Constellation?

Read more

Published: Nov 17, 2022

How are Pearls formed?
How are Pearls formed?

How are Pearls formed?

Read more
Chicken Back Gravy and Such Delights: Life Lessons From My Journey

Chicken Back Gravy and Such Delights: Life Lessons From My Journey

By Donna P. Hope

From $6.74

More Details
Inna Di Dancehall: Popular Culture And the Politics of Identity in Jamaica

Inna Di Dancehall: Popular Culture And the Politics of Identity in Jamaica

Donna P. Hope

From $22.96

More Details