Merge pull request #4664 from MicrosoftDocs/main

m365-skilling-repo-management[bot] · web-flow · commit f8967307e38d · 2025-08-05T08:38:02.000Z
[AutoPublish] main to live - 08/05 01:36 PDT | 08/05 14:06 IST
diff --git a/defender-endpoint/gov.md b/defender-endpoint/gov.md
@@ -160,6 +160,7 @@ These are the known gaps:
 |Microsoft Defender for Endpoint Security Configuration Management|:::image type="icon" source="media/svg/check-yes.svg" border="false":::|:::image type="icon" source="media/svg/check-yes.svg" border="false":::|:::image type="icon" source="media/svg/check-yes.svg" border="false":::|
 |Microsoft Defender for IoT enterprise IoT security|:::image type="icon" source="media/svg/check-no.svg" border="false":::|:::image type="icon" source="media/svg/check-no.svg" border="false":::|:::image type="icon" source="media/svg/check-no.svg" border="false":::|
 
+
 > [!NOTE]
 > While Microsoft Secure Score is available for GCC, GCC High and DoD customers, there are some security recommendations that aren't available.
 
diff --git a/defender-endpoint/mac-install-with-intune.md b/defender-endpoint/mac-install-with-intune.md
@@ -488,6 +488,7 @@ To download the onboarding package from the Microsoft Defender portal:
 
 1. Select **Download onboarding package**. Save it as _GatewayWindowsDefenderATPOnboardingPackage.zip_ to the same directory.
 
+
 1. Extract the contents of the .zip file:
 
    ```bash
diff --git a/defender-for-cloud/TOC.yml b/defender-for-cloud/TOC.yml
@@ -1,2 +0,0 @@
-- name: Index
-  href: index.md
diff --git a/defender-for-cloud/index.md b/defender-for-cloud/index.md
diff --git a/defender-office-365/anti-malware-protection-for-spo-odfb-teams-about.md b/defender-office-365/anti-malware-protection-for-spo-odfb-teams-about.md
@@ -53,7 +53,7 @@ By default, users can download infected files from SharePoint or OneDrive. Here'
 1. In a web browser, a user tries to download a file from SharePoint or OneDrive that happens to be infected.
 2. The user is shown a warning that a virus was detected in the file. The user is given the option to proceed with the download and attempt to clean it using anti-virus software on their device.
 
-To change this behavior so users can't download infected files from SharePoint or OneDrive, even from the anti-virus warning window, admins can use the *DisallowInfectedFileDownload* parameter on the **[Set-SPOTenant](/powershell/module/sharepoint-online/Set-SPOTenant)** cmdlet in SharePoint Online PowerShell. The value $true for the *DisallowInfectedFileDownload* parameter completely blocks access to detected/blocked files for users.
+To change this behavior so users can't download infected files from SharePoint or OneDrive, even from the anti-virus warning window, admins can use the *DisallowInfectedFileDownload* parameter on the **[Set-SPOTenant](/powershell/module/microsoft.online.sharepoint.powershell/set-spotenant)** cmdlet in SharePoint Online PowerShell. The value $true for the *DisallowInfectedFileDownload* parameter completely blocks access to detected/blocked files for users.
 
 For instructions, see [Use SharePoint Online PowerShell to prevent users from downloading malicious files](safe-attachments-for-spo-odfb-teams-configure.md#step-2-recommended-use-sharepoint-online-powershell-to-prevent-users-from-downloading-malicious-files).
 
diff --git a/defender-office-365/safe-attachments-for-spo-odfb-teams-configure.md b/defender-office-365/safe-attachments-for-spo-odfb-teams-configure.md
@@ -95,7 +95,7 @@ Set-SPOTenant -DisallowInfectedFileDownload $true
 - This setting affects both users and admins.
 - People can still delete malicious files.
 
-For detailed syntax and parameter information, see [Set-SPOTenant](/powershell/module/sharepoint-online/Set-SPOTenant).
+For detailed syntax and parameter information, see [Set-SPOTenant](/powershell/module/microsoft.online.sharepoint.powershell/set-spotenant).
 
 ## Step 3 (Recommended) Use the Microsoft Defender portal to create an alert policy for detected files
 
@@ -169,7 +169,7 @@ For detailed syntax and parameter information, see [New-ActivityAlert](/powershe
   Get-SPOTenant | Format-List DisallowInfectedFileDownload
   ```
 
-  For detailed syntax and parameter information, see [Get-SPOTenant](/powershell/module/sharepoint-online/Set-SPOTenant).
+  For detailed syntax and parameter information, see [Get-SPOTenant](/powershell/module/microsoft.online.sharepoint.powershell/get-spotenant).
 
 - To verify you successfully configured an alert policy for detected files, use either of the following methods:
   - In the Microsoft Defender portal at <https://security.microsoft.com/alertpolicies>, select the alert policy, and verify the settings.
diff --git a/defender-xdr/advanced-hunting-fileprofile-function.md b/defender-xdr/advanced-hunting-fileprofile-function.md
@@ -1,15 +1,15 @@
 ---
 title: FileProfile() function in advanced hunting for Microsoft Defender XDR
-description: Learn how to use the FileProfile() to enrich information about files in your advanced hunting query results
+description: Learn how to use the FileProfile() to enrich information about files in your advanced hunting query results.
 search.appverid: met150
 ms.service: defender-xdr
 ms.subservice: adv-hunting
 f1.keywords: 
   - NOCSH
-ms.author: maccruz
-author: schmurky
+ms.author: pauloliveria
+author: poliveria
 ms.localizationpriority: medium
-manager: dansimp
+manager: orspodek
 audience: ITPro
 ms.collection: 
 - m365-security
@@ -21,7 +21,7 @@ appliesto:
     - Microsoft Defender XDR
     - Microsoft Sentinel in the Microsoft Defender portal
 ms.topic: reference
-ms.date: 03/28/2025
+ms.date: 08/05/2025
 ---
 
 # FileProfile()
@@ -51,7 +51,7 @@ The `FileProfile()` function is an enrichment function in [advanced hunting](adv
 | `ThreatName` | `string` | Detection name for any malware or other threats found |
 | `Publisher` | `string` | Name of the organization that published the file |
 | `SoftwareName` | `string` | Name of the software product |
-| `ProfileAvailability` | `string` | Indicates the availability status of the profile data for the file: Available - profile was successfully queried and file data returned, Missing - profile was successfully queried but no file info was found, Error - error in querying the file info or maximum allotted time was exceeded before query could be completed, or an empty value - if file ID is invalid or the maximum number of files was reached |
+| `ProfileAvailability` | `string` | Indicates the availability status of the profile data for the file: Available - profile was successfully queried and file data returned, Missing - profile was successfully queried but no file info was found, Error - error in querying the file info or maximum allotted time was exceeded before query could be completed, or an empty value - if file ID is invalid or the maximum number of files was reached<br><br>If this column's value is Missing or is empty, the value of the `GlobalPrevalance` column would be null. |
 
 
 
@@ -69,7 +69,7 @@ invoke FileProfile(x,y)
 
 
 > [!TIP]
-> Enrichment functions will show supplemental information only when they are available. Availability of information is varied and depends on a lot of factors. Make sure to consider this when using FileProfile() in your queries or in creating custom detections. For best results, we recommend using the FileProfile() function with SHA1.
+> Enrichment functions will show supplemental information only when they're available. Availability of information is varied and depends on numerous factors. Make sure to consider this when using FileProfile() in your queries or in creating custom detections. For best results, we recommend using the FileProfile() function with SHA1.
 
 ## Examples
 
diff --git a/defender-xdr/advanced-hunting-limits.md b/defender-xdr/advanced-hunting-limits.md
@@ -21,7 +21,7 @@ appliesto:
     - Microsoft Defender XDR
     - Microsoft Sentinel in the Microsoft Defender portal
 ms.topic: how-to
-ms.date: 07/28/2025
+ms.date: 08/04/2025
 ---
 
 # Use the advanced hunting query resource report
diff --git a/defender-xdr/advanced-hunting-query-results.md b/defender-xdr/advanced-hunting-query-results.md
@@ -18,7 +18,7 @@ ms.custom:
 - cx-ti
 - cx-ah
 ms.topic: how-to
-ms.date: 07/28/2025
+ms.date: 08/04/2025
 appliesto:
 - Microsoft Defender XDR
 - Microsoft Sentinel in the Microsoft Defender portal
diff --git a/defender-xdr/advanced-hunting-seenby-function.md b/defender-xdr/advanced-hunting-seenby-function.md
@@ -1,15 +1,15 @@
 ---
 title: SeenBy() function in advanced hunting for Microsoft Defender XDR
-description: Learn how to use the SeenBy() function to look for which onboarded devices discovered a certain device
+description: Learn how to use the SeenBy() function to look for which onboarded devices discovered a certain device.
 search.appverid: met150
 ms.service: defender-xdr
 ms.subservice: adv-hunting
 f1.keywords: 
   - NOCSH
-ms.author: maccruz
-author: schmurky
+ms.author: pauloliveria
+author: poliveria
 ms.localizationpriority: medium
-manager: dansimp
+manager: orspodek
 audience: ITPro
 ms.collection: 
 - m365-security
@@ -21,7 +21,7 @@ appliesto:
     - Microsoft Defender XDR
     - Microsoft Sentinel in the Microsoft Defender portal
 ms.topic: reference
-ms.date: 03/28/2025
+ms.date: 08/05/2025
 ---
 
 # SeenBy()
@@ -39,7 +39,7 @@ This function returns a table that has the following column:
 |------------|---------------|-------------|
 | `DeviceId` | `string` | Unique identifier for the device in the service |
 
-Up to 1,000 results are returned. 
+You can enter up to 1,000 devices in this function. 
 
 ## Syntax
 
@@ -65,4 +65,5 @@ DeviceInfo
 - [Learn the query language](advanced-hunting-query-language.md)
 - [Understand the schema](advanced-hunting-schema-tables.md)
 - [Get more query examples](advanced-hunting-shared-queries.md)
+
 [!INCLUDE [Microsoft Defender XDR rebranding](../includes/defender-m3d-techcommunity.md)]
