Merge pull request #4663 from MicrosoftDocs/poliveria-ah-function-updates-080502025

poliveria · web-flow · commit cdc0a2401bda · 2025-08-05T13:59:29.000+05:30
edits
diff --git a/defender-xdr/advanced-hunting-fileprofile-function.md b/defender-xdr/advanced-hunting-fileprofile-function.md
@@ -1,15 +1,15 @@
 ---
 title: FileProfile() function in advanced hunting for Microsoft Defender XDR
-description: Learn how to use the FileProfile() to enrich information about files in your advanced hunting query results
+description: Learn how to use the FileProfile() to enrich information about files in your advanced hunting query results.
 search.appverid: met150
 ms.service: defender-xdr
 ms.subservice: adv-hunting
 f1.keywords: 
   - NOCSH
-ms.author: maccruz
-author: schmurky
+ms.author: pauloliveria
+author: poliveria
 ms.localizationpriority: medium
-manager: dansimp
+manager: orspodek
 audience: ITPro
 ms.collection: 
 - m365-security
@@ -21,7 +21,7 @@ appliesto:
     - Microsoft Defender XDR
     - Microsoft Sentinel in the Microsoft Defender portal
 ms.topic: reference
-ms.date: 03/28/2025
+ms.date: 08/05/2025
 ---
 
 # FileProfile()
@@ -51,7 +51,7 @@ The `FileProfile()` function is an enrichment function in [advanced hunting](adv
 | `ThreatName` | `string` | Detection name for any malware or other threats found |
 | `Publisher` | `string` | Name of the organization that published the file |
 | `SoftwareName` | `string` | Name of the software product |
-| `ProfileAvailability` | `string` | Indicates the availability status of the profile data for the file: Available - profile was successfully queried and file data returned, Missing - profile was successfully queried but no file info was found, Error - error in querying the file info or maximum allotted time was exceeded before query could be completed, or an empty value - if file ID is invalid or the maximum number of files was reached |
+| `ProfileAvailability` | `string` | Indicates the availability status of the profile data for the file: Available - profile was successfully queried and file data returned, Missing - profile was successfully queried but no file info was found, Error - error in querying the file info or maximum allotted time was exceeded before query could be completed, or an empty value - if file ID is invalid or the maximum number of files was reached<br><br>If this column's value is Missing or is empty, the value of the `GlobalPrevalance` column would be null. |
 
 
 
@@ -69,7 +69,7 @@ invoke FileProfile(x,y)
 
 
 > [!TIP]
-> Enrichment functions will show supplemental information only when they are available. Availability of information is varied and depends on a lot of factors. Make sure to consider this when using FileProfile() in your queries or in creating custom detections. For best results, we recommend using the FileProfile() function with SHA1.
+> Enrichment functions will show supplemental information only when they're available. Availability of information is varied and depends on numerous factors. Make sure to consider this when using FileProfile() in your queries or in creating custom detections. For best results, we recommend using the FileProfile() function with SHA1.
 
 ## Examples
 
diff --git a/defender-xdr/advanced-hunting-limits.md b/defender-xdr/advanced-hunting-limits.md
@@ -21,7 +21,7 @@ appliesto:
     - Microsoft Defender XDR
     - Microsoft Sentinel in the Microsoft Defender portal
 ms.topic: how-to
-ms.date: 07/28/2025
+ms.date: 08/04/2025
 ---
 
 # Use the advanced hunting query resource report
diff --git a/defender-xdr/advanced-hunting-query-results.md b/defender-xdr/advanced-hunting-query-results.md
@@ -18,7 +18,7 @@ ms.custom:
 - cx-ti
 - cx-ah
 ms.topic: how-to
-ms.date: 07/28/2025
+ms.date: 08/04/2025
 appliesto:
 - Microsoft Defender XDR
 - Microsoft Sentinel in the Microsoft Defender portal
diff --git a/defender-xdr/advanced-hunting-seenby-function.md b/defender-xdr/advanced-hunting-seenby-function.md
@@ -1,15 +1,15 @@
 ---
 title: SeenBy() function in advanced hunting for Microsoft Defender XDR
-description: Learn how to use the SeenBy() function to look for which onboarded devices discovered a certain device
+description: Learn how to use the SeenBy() function to look for which onboarded devices discovered a certain device.
 search.appverid: met150
 ms.service: defender-xdr
 ms.subservice: adv-hunting
 f1.keywords: 
   - NOCSH
-ms.author: maccruz
-author: schmurky
+ms.author: pauloliveria
+author: poliveria
 ms.localizationpriority: medium
-manager: dansimp
+manager: orspodek
 audience: ITPro
 ms.collection: 
 - m365-security
@@ -21,7 +21,7 @@ appliesto:
     - Microsoft Defender XDR
     - Microsoft Sentinel in the Microsoft Defender portal
 ms.topic: reference
-ms.date: 03/28/2025
+ms.date: 08/05/2025
 ---
 
 # SeenBy()
@@ -39,7 +39,7 @@ This function returns a table that has the following column:
 |------------|---------------|-------------|
 | `DeviceId` | `string` | Unique identifier for the device in the service |
 
-Up to 1,000 results are returned. 
+You can enter up to 1,000 devices in this function. 
 
 ## Syntax
 
@@ -65,4 +65,5 @@ DeviceInfo
 - [Learn the query language](advanced-hunting-query-language.md)
 - [Understand the schema](advanced-hunting-schema-tables.md)
 - [Get more query examples](advanced-hunting-shared-queries.md)
+
 [!INCLUDE [Microsoft Defender XDR rebranding](../includes/defender-m3d-techcommunity.md)]
