From 91ba096cf931d355282faa6d664aad55d1a27906 Mon Sep 17 00:00:00 2001
From: TheDeuceYouSay <58704928+TheDeuceYouSay@users.noreply.github.com>
Date: Tue, 22 Apr 2025 07:20:54 -0700
Subject: [PATCH 1/2] Update configure-attack-disruption.md

The registry key in the original document does not exist on Windows 11 workstations I tested on (OS Build: 26100.3775 )

The proposed key does offer the correct MS Sense version installed on the client.
---
 defender-xdr/configure-attack-disruption.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/defender-xdr/configure-attack-disruption.md b/defender-xdr/configure-attack-disruption.md
index 40e6893d81..37ca2cd56c 100644
--- a/defender-xdr/configure-attack-disruption.md
+++ b/defender-xdr/configure-attack-disruption.md
@@ -45,6 +45,7 @@ The following are prerequisites for configuring automatic attack disruption in M
 The Minimum Sense Agent version required for the **Contain User** action to work is v10.8470. You can identify the Sense Agent version on a device by running the following PowerShell command: 
 
 > Get-ItemProperty -Path 'Registry::HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Advanced Threat Protection\' -Name "InstallLocation"
+> Get-ItemProperty -Path 'Registry::HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Advanced Threat Protection\Status' -Name "MsSenseDllVersion"
 
 #### Automation setting for your organizations devices
 

From 363a5c543df188637c6ab5d45672cdf3a2317d9b Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 15 May 2025 13:49:04 -0700
Subject: [PATCH 2/2] Update configure-attack-disruption.md

---
 defender-xdr/configure-attack-disruption.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/defender-xdr/configure-attack-disruption.md b/defender-xdr/configure-attack-disruption.md
index 37ca2cd56c..26f6004674 100644
--- a/defender-xdr/configure-attack-disruption.md
+++ b/defender-xdr/configure-attack-disruption.md
@@ -9,7 +9,7 @@ audience: ITPro
 ms.topic: how-to
 ms.service: defender-xdr
 ms.localizationpriority: medium
-ms.date: 02/16/2025
+ms.date: 05/15/2025
 ms.collection:
 - m365-security
 - tier2