MicrosoftDocs
diff --git a/‎articles/external-attack-surface-management/easm-copilot.md
Lines changed: 11 additions & 11 deletions b/‎articles/external-attack-surface-management/easm-copilot.md
Lines changed: 11 additions & 11 deletions
@@ -56,7 +56,7 @@ The EASM Security Copilot integration can help you:
 
   Use Security Copilot to curate your attack surface by using labels, external IDs, and state modifications for a set of assets. This process speeds up curation, so you can organize your inventory faster and more efficiently.
 
-## Enable the Microsoft Security Copilot integration in Defender EASM
+## Enable Microsoft Security Copilot integration in Defender EASM
 
 To set up Microsoft Security Copilot integration in Defender EASM, complete the steps described in the next sections.
 
@@ -67,7 +67,7 @@ To enable integration, you need to have these prerequisites:
 - Access to Microsoft Security Copilot
 - Permissions to activate new connections
 
-### Microsoft Security Copilot  connection
+### Microsoft Security Copilot connection
 
 1. Access [Microsoft Security Copilot](https://securitycopilot.microsoft.com/) and ensure that you're authenticated.
 1. Select the plugin icon on the upper-right side of the prompt input bar.
@@ -112,13 +112,13 @@ For more information on writing Microsoft Security Copilot prompts, see [Microso
 
 | Capability        | Description                     | Inputs                | Behaviors                              |
 | ----------------- | ------------------------------- | --------------------- | -------------------------------------- |
-| **Get attack surface summary** | Returns the attack surface summary for either the customer’s Defender EASM resource or a specific company name. | **Example inputs**: <br> • Get attack surface for LinkedIn.   <br> • Get my attack surface.  <br> • What is the attack surface for Microsoft?   <br> • What is my attack surface?  <br> • What are the externally facing assets for Azure?  <br> • What are my externally facing assets?  <br> <br>  **Optional Inputs**: <br> • CompanyName | If your plugin is configured to an active Defender EASM resource and no other company is specified:  <br> • Returns an attack surface summary for the customer’s Defender EASM resource. <br><br> If another company name is provided: <br> • If no exact for match for company name is found, returns a list of possible matches.  <br> • If there's an exact match, returns the attack surface summary for the company name. |
-| **Get attack surface insights** | Returns the attack surface insights for either the customer’s Defender EASM resource or a specific company name.  | **Example inputs**: <br> • Get high-priority attack surface insights for LinkedIn. <br> • Get my high-priority attack surface insights.  <br> • Get low priority attack surface insights for Microsoft.  <br> • Get low priority attack surface insights.  <br> • Do I have high-priority vulnerabilities in my external attack surface for Azure?  <br><br> **Required inputs**: <br> • PriorityLevel (the priority level must be high, medium, or low; if not provided, it defaults to high)  <br><br>**Optional inputs**: <br> • CompanyName (the company name)  | If your plugin is configured to an active Defender EASM resource and no other company is specified:  <br> • Returns attack surface insights for the customer’s Defender EASM resource.  <br><br> If another company name is provided: <br> • If no exact for match for company name is found, returns a list of possible matches. <br> • If there's an exact match, returns the attack surface insights for the company name.  |
-| **Get assets affected by a CVE** | Returns the assets affected by a CVE for either the customer's Defender EASM resource or a specific company name.  | **Example inputs**: <br><br> • Get assets affected by CVE-2023-0012 for LinkedIn.  <br> • Which assets are affected by CVE-2023-0012 for Microsoft?  <br> • Is Azure's external attack surface impacted by CVE-2023-0012?  <br> • Get assets affected by CVE-2023-0012 for my attack surface.  <br> • Which of my assets are affected by CVE-2023-0012?  <br> • Is my external attack surface impacted by CVE-2023-0012?  <br><br>**Required inputs**: <br> • CVE ID <br><br> **Optional inputs**: <br> • CompanyName | If your plugin is configured to an active Defender EASM resource and no other company is specified:  <br> • If plugin settings aren't filled out, fail graciously and remind customers.  <br> • If plugin settings are filled out, returns the assets affected by a CVE for the customer’s Defender EASM resource. <br><br> If another company name is provided: <br> • If no exact for match for company name is found, returns a list of possible matches.  <br> • If there's an exact match, returns the assets affected by a CVE for the specific company name.  |
-| **Get assets affected by a CVSS** | Returns the assets affected by a Common Vulnerability Scoring System (CVSS) score for either the customer’s Defender EASM resource or a specific company name.  | **Example inputs**: <br> • Get assets affected by high-priority CVSS scores in LinkedIn’s attack surface. <br> • How many assets have critical CVSS score for Microsoft?  <br> • Which assets have critical CVSS scores for Azure?  <br> • Get assets affected by high-priority CVSS scores in my attack surface.  <br> • How many of my assets have critical CVSS scores?  <br> • Which of my assets have critical CVSS scores?  <br><br> **Required inputs**: <br> • CVSSPriority (the CVSS priority must be *critical*, *high*, *medium*, or *low*) <br><br> **Optional inputs**: <br> • CompanyName | If your plugin is configured to an active Defender EASM resource and no other company is specified:    <br> • If plugin settings aren't filled out, fail graciously and remind customers.  <br> •  If plugin settings are filled out, returns the assets affected by a CVSS score for the customer’s Defender EASM resource. <br><br> If another company name is provided: <br> • If no exact for match for company name is found, returns a list of possible matches.  <br> • If there's an exact match, returns the assets affected by a CVSS score for the specific company name.  |
-| **Get expired domains** | Returns the number of expired domains for either the customer’s Defender EASM resource or a specific company name.  | **Example inputs**: <br> • How many domains are expired in LinkedIn’s attack surface?    <br> • How many assets are using expired domains for Microsoft?   <br> • How many domains are expired in my attack surface?    <br> • How many of my assets are using expired domains for Microsoft?  <br><br> **Optional inputs**:  <br> • CompanyName | If your plugin is configured to an active Defender EASM resource and no other company is specified: <br> • Returns the number of expired domains for the customer’s Defender EASM resource.  <br><br>  If another company name is provided:  <br> • If no exact for match for company name is found, returns a list of possible matches.  <br> • If there's an exact match, returns the number of expired domains for the specific company name.  |
-| **Get expired certificates** | Returns the number of expired SSL certificates for either the customer’s Defender EASM resource or a specific company name.  | **Example inputs**:  <br> • How many SSL certificates are expired for LinkedIn?   <br> • How many assets are using expired SSL certificates for Microsoft?  <br> • How many SSL certificates are expired for my attack surface?   <br> • What are my expired SSL certificates?   <br><br> **Optional inputs**: <br> • CompanyName |  If your plugin is configured to an active Defender EASM resource and no other company is specified:  <br> • Returns the number of SSL certificates for the customer’s Defender EASM resource. <br><br> If another company name is provided: <br> • If no exact for match for company name is found, returns a list of possible matches.  <br> • If there's an exact match, returns the number of SSL certificates for the specific company name.  |
-| **Get SHA1 certificates** | Returns the number of SHA1 SSL certificates for either the customer’s Defender EASM resource or a specific company name.  | **Example inputs**: <br> • How many SSL SHA1 certificates are present for LinkedIn?   <br> • How many assets are using SSL SHA1 for Microsoft?  <br> • How many SSL SHA1 certificates are present for my attack surface?   <br> • How many of my assets are using SSL SHA1?  <br><br> **Optional inputs**: <br> • CompanyName |  If your plugin is configured to an active Defender EASM resource and no other company is specified:  <br> • Returns the number of SHA1 SSL certificates for the customer’s Defender EASM resource. <br><br>  If another company name is provided: <br> • If no exact for match for company name is found, returns a list of possible matches.  <br> • If there's an exact match, returns the number of SHA1 SSL certificates for the specific company name.  |
+| **Get attack surface summary** | Returns the attack surface summary for either the customer’s Defender EASM resource or a specific company name. | **Example inputs**: <br> • Get attack surface for LinkedIn.   <br> • Get my attack surface.  <br> • What is the attack surface for Microsoft?   <br> • What is my attack surface?  <br> • What are the externally facing assets for Azure?  <br> • What are my externally facing assets?  <br> <br> **Optional Inputs**: <br> • CompanyName | If your plugin is configured to an active Defender EASM resource and no other company is specified: <br> • Returns an attack surface summary for the customer’s Defender EASM resource. <br><br> If another company name is provided: <br> • If no exact for match for company name is found, returns a list of possible matches.  <br> • If there's an exact match, returns the attack surface summary for the company name. |
+| **Get attack surface insights** | Returns the attack surface insights for either the customer’s Defender EASM resource or a specific company name.  | **Example inputs**: <br> • Get high-priority attack surface insights for LinkedIn. <br> • Get my high-priority attack surface insights.  <br> • Get low priority attack surface insights for Microsoft.  <br> • Get low priority attack surface insights.  <br> • Do I have high-priority vulnerabilities in my external attack surface for Azure?  <br><br> **Required inputs**: <br> • PriorityLevel (the priority level must be high, medium, or low; if not provided, it defaults to high)  <br><br>**Optional inputs**: <br> • CompanyName (the company name)  | If your plugin is configured to an active Defender EASM resource and no other company is specified: <br> • Returns attack surface insights for the customer’s Defender EASM resource.  <br><br> If another company name is provided: <br> • If no exact for match for company name is found, returns a list of possible matches. <br> • If there's an exact match, returns the attack surface insights for the company name.  |
+| **Get assets affected by a CVE** | Returns the assets affected by a CVE for either the customer's Defender EASM resource or a specific company name.  | **Example inputs**: <br><br> • Get assets affected by CVE-2023-0012 for LinkedIn.  <br> • Which assets are affected by CVE-2023-0012 for Microsoft?  <br> • Is Azure's external attack surface impacted by CVE-2023-0012?  <br> • Get assets affected by CVE-2023-0012 for my attack surface.  <br> • Which of my assets are affected by CVE-2023-0012?  <br> • Is my external attack surface impacted by CVE-2023-0012?  <br><br>**Required inputs**: <br> • CVE ID <br><br> **Optional inputs**: <br> • CompanyName | If your plugin is configured to an active Defender EASM resource and no other company is specified: <br> • If plugin settings aren't filled out, fail graciously and remind customers.  <br> • If plugin settings are filled out, returns the assets affected by a CVE for the customer’s Defender EASM resource. <br><br> If another company name is provided: <br> • If no exact for match for company name is found, returns a list of possible matches.  <br> • If there's an exact match, returns the assets affected by a CVE for the specific company name.  |
+| **Get assets affected by a CVSS** | Returns the assets affected by a Common Vulnerability Scoring System (CVSS) score for either the customer’s Defender EASM resource or a specific company name.  | **Example inputs**: <br> • Get assets affected by high-priority CVSS scores in LinkedIn’s attack surface. <br> • How many assets have critical CVSS score for Microsoft?  <br> • Which assets have critical CVSS scores for Azure?  <br> • Get assets affected by high-priority CVSS scores in my attack surface.  <br> • How many of my assets have critical CVSS scores?  <br> • Which of my assets have critical CVSS scores?  <br><br> **Required inputs**: <br> • CVSSPriority (the CVSS priority must be *critical*, *high*, *medium*, or *low*) <br><br> **Optional inputs**: <br> • CompanyName | If your plugin is configured to an active Defender EASM resource and no other company is specified:   <br> • If plugin settings aren't filled out, fail graciously and remind customers.  <br> • If plugin settings are filled out, returns the assets affected by a CVSS score for the customer’s Defender EASM resource. <br><br> If another company name is provided: <br> • If no exact for match for company name is found, returns a list of possible matches.  <br> • If there's an exact match, returns the assets affected by a CVSS score for the specific company name.  |
+| **Get expired domains** | Returns the number of expired domains for either the customer’s Defender EASM resource or a specific company name.  | **Example inputs**: <br> • How many domains are expired in LinkedIn’s attack surface?   <br> • How many assets are using expired domains for Microsoft?  <br> • How many domains are expired in my attack surface?   <br> • How many of my assets are using expired domains for Microsoft?  <br><br> **Optional inputs**: <br> • CompanyName | If your plugin is configured to an active Defender EASM resource and no other company is specified: <br> • Returns the number of expired domains for the customer’s Defender EASM resource. <br><br> If another company name is provided: <br> • If no exact for match for company name is found, returns a list of possible matches.  <br> • If there's an exact match, returns the number of expired domains for the specific company name.  |
+| **Get expired certificates** | Returns the number of expired SSL certificates for either the customer’s Defender EASM resource or a specific company name.  | **Example inputs**: <br> • How many SSL certificates are expired for LinkedIn?   <br> • How many assets are using expired SSL certificates for Microsoft?  <br> • How many SSL certificates are expired for my attack surface?   <br> • What are my expired SSL certificates?  <br><br> **Optional inputs**: <br> • CompanyName | If your plugin is configured to an active Defender EASM resource and no other company is specified: <br> • Returns the number of SSL certificates for the customer’s Defender EASM resource. <br><br> If another company name is provided: <br> • If no exact for match for company name is found, returns a list of possible matches.  <br> • If there's an exact match, returns the number of SSL certificates for the specific company name.  |
+| **Get SHA1 certificates** | Returns the number of SHA1 SSL certificates for either the customer’s Defender EASM resource or a specific company name.  | **Example inputs**: <br> • How many SSL SHA1 certificates are present for LinkedIn?   <br> • How many assets are using SSL SHA1 for Microsoft?  <br> • How many SSL SHA1 certificates are present for my attack surface?   <br> • How many of my assets are using SSL SHA1?  <br><br> **Optional inputs**: <br> • CompanyName | If your plugin is configured to an active Defender EASM resource and no other company is specified: <br> • Returns the number of SHA1 SSL certificates for the customer’s Defender EASM resource. <br><br> If another company name is provided: <br> • If no exact for match for company name is found, returns a list of possible matches.  <br> • If there's an exact match, returns the number of SHA1 SSL certificates for the specific company name.  |
 | **Translate natural language to a Defender EASM query** | Translates any natural language question into a Defender EASM query and returns the assets that match the query. | **Example inputs**: <br> • What assets are using jQuery version 3.1.0? <br> • Get the hosts with port 80 open in my attack surface. <br> • Find all the page, host, and ASN assets in my inventory that have an IP address that is IP *X*, IP *Y*, or IP *Z*. <br> • Which of my assets have a registrant email of `<[email protected]>`? | If your plugin is configured to an active Defender EASM resource: <br> • Returns the assets matching with the translated query. |
 
 ### Switch between resource data and company data
@@ -127,7 +127,7 @@ Even though we added resource integration for our skills, we still support pulli
 
 ## Provide feedback
 
-Your feedback on Microsoft Security Copilot generally, and the Defender EASM plugin specifically, is vital to guide current and planned development of the product. The optimal way to provide this feedback is directly in the product, using the feedback buttons at the bottom of each completed prompt. Select **Looks right**, **Needs improvement**, or **Inappropriate**. We recommend that you choose **Looks right** when the result matches expectations, **Needs improvement** when it doesn't, and **Inappropriate** when the result is harmful in some way.  
+Your feedback on Microsoft Security Copilot generally, and the Defender EASM plugin specifically, is vital to guide current and planned development of the product. The optimal way to provide this feedback is directly in the product, using the feedback buttons at the bottom of each completed prompt. Select **Looks right**, **Needs improvement**, or **Inappropriate**. We recommend that you choose **Looks right** when the result matches expectations, **Needs improvement** when it doesn't, and **Inappropriate** when the result is harmful in some way. 
 
 Whenever possible, and especially when the result you select is **Needs improvement**, please write a few words to explain what we can do to improve the outcome. This request also applies when you expect Microsoft Security Copilot to invoke the Defender EASM plugin, but a different plugin is engaged instead.
 
@@ -139,6 +139,6 @@ For more information about data privacy in Microsoft Security Copilot, see [Priv
 
 ## Related content
 
-- [What is Microsoft Security Copilot?](/security-copilot/microsoft-security-copilot)
+- [Microsoft Security Copilot](/security-copilot/microsoft-security-copilot)
 - [Privacy and data security in Microsoft Security Copilot](/security-copilot/privacy-data-security)
 - [Query your attack surface with Defender EASM by using Microsoft Copilot in Azure](/azure/copilot/query-attack-surface)