deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-06-16 19:03:46 +00:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity

added syntax

Browse Source
This commit is contained in:
Justin Hall
2018-12-05 12:49:13 -08:00
parent 5a9137a094
commit fa5c3d18d5
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
windows/security/threat-protection/windows-defender-application-control/querying-application-control-events-centrally-using-advanced-hunting .md
View File

@ -23,7 +23,7 @@ This capability is supported beginning with Windows version 1607.
Here is a simple example query that shows all the WDAC events generated in the last seven days from machines being monitored by Windows Defender ATP: Here is a simple example query that shows all the WDAC events generated in the last seven days from machines being monitored by Windows Defender ATP:
``` ```kusto
MiscEvents MiscEvents
| where EventTime > ago(7d) and | where EventTime > ago(7d) and
ActionType startswith "AppControl" ActionType startswith "AppControl"