Microsoft announced the addition of live response capabilities to its Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) enabling security operation teams to perform system forensic analysis remotely. Microsoft Defender ATP is a security platform designed to allow security teams to provide “preventative protection
Source: and response”” capabilities. The new built-in capabilities allow corporate security analysts to collect forensic data easier