pull base content,head:MicrosoftDocs:main,into:wwlpublishsync

Author: wwlpublish

learn-pr/wwl-sci/defend-against-cyberthreats-microsoft-defender-xdr-labs/1-introduction.yml

@@ -0,0 +1,13 @@
+### YamlMime:ModuleUnit
+uid: learn.wwl.defend-against-cyberthreats-microsoft-defender-xdr-labs.introduction
+title: Introduction
+metadata:
+  title: Introduction
+  description: "Introduction to the Defend against Cyberthreats with Microsoft Defender XDR exercises module."
+  ms.date: 11/7/2024
+  author: wwlpublish
+  ms.author: kelawson
+  ms.topic: unit
+durationInMinutes: 3
+content: |
+  [!include[](includes/1-introduction.md)]

learn-pr/wwl-sci/defend-against-cyberthreats-microsoft-defender-xdr-labs/2-initialize-defender-xdr-exercise.yml

@@ -0,0 +1,14 @@
+### YamlMime:ModuleUnit
+uid: learn.wwl.defend-against-cyberthreats-microsoft-defender-xdr-lab.initialize-defender-xdr-exercise
+
+title: Configure the Microsoft Defender XDR environment
+metadata:
+  title: exercise
+  description: "Configure the Microsoft Defender XDR environment."
+  ms.date: 11/7/2024
+  author: wwlpublish
+  ms.author: kelawson
+  ms.topic: unit
+durationInMinutes: 10
+content: |
+  [!include[](includes/2-initialize-defender-xdr-exercise.md)]

learn-pr/wwl-sci/defend-against-cyberthreats-microsoft-defender-xdr-labs/3-deploy-defender-endpoint-exercise.yml

@@ -0,0 +1,14 @@
+### YamlMime:ModuleUnit
+uid: learn.wwl.defend-against-cyberthreats-microsoft-defender-xdr-lab.deploy-defender-endpoint-exercise
+
+title: Deploy Microsoft Defender for Endpoint
+metadata:
+  title: exercise
+  description: "Deploy Microsoft Defender for Endpoint and onboard devices."
+  ms.date: 11/7/2024
+  author: wwlpublish
+  ms.author: kelawson
+  ms.topic: unit
+durationInMinutes: 15
+content: |
+  [!include[](includes/3-deploy-defender-endpoint-exercise.md)]

learn-pr/wwl-sci/defend-against-cyberthreats-microsoft-defender-xdr-labs/4-incidents-exercise.yml

@@ -0,0 +1,14 @@
+### YamlMime:ModuleUnit
+uid: learn.wwl.defend-against-cyberthreats-microsoft-defender-xdr-lab.incidents-exercise
+
+title: Mitigate Attacks with Microsoft Defender for Endpoint
+metadata:
+  title: exercise
+  description: "Mitigate Attacks with Microsoft Defender for Endpoint."
+  ms.date: 11/7/2024
+  author: wwlpublish
+  ms.author: kelawson
+  ms.topic: unit
+durationInMinutes: 30
+content: |
+  [!include[](includes/4-incidents-exercise.md)]

learn-pr/wwl-sci/defend-against-cyberthreats-microsoft-defender-xdr-labs/5-summary.yml

@@ -0,0 +1,13 @@
+### YamlMime:ModuleUnit
+uid: learn.wwl.defend-against-cyberthreats-microsoft-defender-xdr-labs.summary
+title: Summary
+metadata:
+  title: summary
+  description: "Provides a summary of initializing and deploying Microsoft Defender XDR and Microsoft Defender for Endpoint."
+  ms.date: 11/5/2024
+  author: wwlpublish
+  ms.author: kelawson
+  ms.topic: unit
+durationInMinutes: 5
+content: |
+  [!include[](includes/5-summary.md)]

learn-pr/wwl-sci/defend-against-cyberthreats-microsoft-defender-xdr-labs/includes/1-introduction.md

@@ -0,0 +1,11 @@
+Defending against cyberthreats with Microsoft Defender involves provisioning and deploying Defender XDR (Extended Detection and Response) and Defender for Endpoint before you can onboard devices, configure policies, and investigate and respond to incidents.
+
+You're a Security Operations Analyst working at a company that is implementing Microsoft Defender. Your role is to
+guide the company’s IT team to defend against cyberthreats with Microsoft Defender (XDR).  
+
+After completing this module, you'll be able to:
+
+- Configure the Microsoft Defender XDR environment
+- Deploy Microsoft Defender for Endpoint
+- Mitigate threats using Microsoft Defender for Endpoint
+- Investigate and respond to incidents using Microsoft Defender XDR

learn-pr/wwl-sci/defend-against-cyberthreats-microsoft-defender-xdr-labs/includes/2-initialize-defender-xdr-exercise.md

@@ -0,0 +1,10 @@
+Now it's your chance to deploy and configure a Microsoft Defender workspace.
+
+In this exercise, you learn how to deploy and configure the Microsoft Defender XDR workspace.
+
+> [!NOTE]
+> To complete this exercise, you will need access to a Microsoft 365 E5 [free trial subscription](/microsoft-365/commerce/try-or-buy-microsoft-365?view=o365-worldwide&preserve-view=true).
+
+Launch the exercise and follow the instructions.
+
+[![Button to launch exercise.](../media/launch-exercise.png)](https://microsoftlearning.github.io/Defend-against-cyberthreats-Microsoft-Defender-XDR/Instructions/Labs/LAB_01_Configure_Microsoft_Defender.html)

learn-pr/wwl-sci/defend-against-cyberthreats-microsoft-defender-xdr-labs/includes/3-deploy-defender-endpoint-exercise.md

@@ -0,0 +1,10 @@
+Now it's your chance to deploy and configure Microsoft Defender for Endpoint. 
+
+In this exercise, you learn how to initialize a Microsoft Defender for Endpoint environment, and onboard devices.
+
+> [!NOTE]
+> To complete this exercise, you will need access to a Microsoft 365 E5 [free trial subscription](/microsoft-365/commerce/try-or-buy-microsoft-365?view=o365-worldwide&preserve-view=true), and a Microsoft Defender for Endpoint P2 [free trial subscription](https://go.microsoft.com/fwlink/p/?linkid=2225630&clcid=0x409&culture=en-us&country=us).
+
+Launch the exercise and follow the instructions.
+
+[![Button to launch exercise.](../media/launch-exercise.png)](https://microsoftlearning.github.io/Defend-against-cyberthreats-Microsoft-Defender-XDR/Instructions/Labs/LAB_02_Deploy_Defender_Endpoint.html)

learn-pr/wwl-sci/defend-against-cyberthreats-microsoft-defender-xdr-labs/includes/4-incidents-exercise.md

@@ -0,0 +1,10 @@
+Now it's time to validate your configuration by performing simulated attacks that generate alerts and incidents. 
+
+In this exercise, you explore the Microsoft Defender for Endpoint attack mitigation capabilities. And, you verify successful device onboarding and investigate alerts and incidents created during that process.
+
+> [!NOTE]
+> To complete this exercise, you will need access to a Microsoft 365 E5 [free trial subscription](/microsoft-365/commerce/try-or-buy-microsoft-365?view=o365-worldwide&preserve-view=true), and a Microsoft Defender for Endpoint P2 [free trial subscription](https://go.microsoft.com/fwlink/p/?linkid=2225630&clcid=0x409&culture=en-us&country=us).
+
+Launch the exercise and follow the instructions.
+
+[![Button to launch exercise.](../media/launch-exercise.png)](https://microsoftlearning.github.io/Defend-against-cyberthreats-Microsoft-Defender-XDR/Instructions/Labs/LAB_03_Mitigate_Attacks.html)

learn-pr/wwl-sci/defend-against-cyberthreats-microsoft-defender-xdr-labs/includes/5-summary.md

@@ -0,0 +1,18 @@
+In this module you learned how to configure Microsoft Defender XDR, deploy Microsoft Defender for Endpoint and onboard devices. You also configured policies, mitigated threats and responded to alerts and incidents with Defender XDR.
+
+You should now be able to:
+
+- Configure the Microsoft Defender XDR environment
+- Deploy Microsoft Defender for Endpoint and onboard devices
+- Mitigate threats using Microsoft Defender for Endpoint device groups and security policies
+- Investigate and respond to incidents using Microsoft Defender XDR
+
+## Learn more
+
+You can learn more by reviewing the following.
+
+- [What is Microsoft Defender XDR](/defender-xdr/microsoft-365-defender)
+
+- [What is Microsoft Defender for Endpoint](/defender-endpoint/microsoft-defender-endpoint)
+
+- [Microsoft Tech Community Security Webinars](https://techcommunity.microsoft.com/t5/microsoft-security-and/security-community-webinars/ba-p/927888?azure-portal=true)