My Prompts
Happy Friday everyone! I hope your week was a good one.
I’m looking forward to visiting my best friend in Ohio Amish country this weekend to celebrate his birthday. If you’re not familiar with Amish areas of the US, it’s a very different world. It’s a much more relaxed environment, so visiting is always good for us to decompress from normal life. Funny enough, except for the horse and buggy and standard Amish styles, the approach to life reminds me very much of Hawaii where nothing is urgent and there are no emergencies. I can’t imagine, of course, the Amish wearing a Hawaiian shirt or hitting the beach, but they do have their own rituals. The Amish love their volleyball. This time of year, in the near 100F degree heat, you’ll often see full teams of Amish women wrapped in their long Amish dresses on a volleyball field serving, setting, and spiking with a competitive fervor for hours.
My friend and I always tend to get into something, so who knows what we’ll actually do this weekend. Last time we bought enough Tannerite to melt a small car, so we’ll probably focus on that once again. Our skill in this area needs some work as we were barely able to knock the top off a pumpkin or two.
On the way back we’re visiting my youngest son and his wife in Columbus, OH. His birthday is coming up next weekend, but he’s too busy to get together so we’ll celebrate early. Plus, its Father’s Day on Sunday and he said he has a gift for me. Long gone are the days of neckties and ashtrays, so Father’s Day gifts are much better than they were for my dad. But gift or not, I always look forward to being with my kids.
…
Miscellaneous stuff to highlight this week:
The Copilot for Security partner playbook is now ready for download. Download it today at: https://aka.ms/CfSpartnerplaybook
Did you miss my Virtual Ninja Show on prompting for Copilot for Security? Catch the replay on your favorite platform...
Introducing the Copilot for Security Prompting Workshop
We're quickly reaching 4,000 members for the Copilot for Security community group. Come join us! https://www.linkedin.com/groups/14345161/
…
That’s it from me for this week. Have a great weekend!
Talk soon.
-Rod
Community Prompts
Plugin: WHOIS Services for Copilot for Security - Since WHOIS data is a powerful tool for cybersecurity professionals we should be able to use this information with Copilot for Security. Right?
Brief: Using the Public Web with Copilot for Security - Inside the plugins plane in Copilot for Security there’s an option to enable or disable content downloads from the public web. With this enabled you can request that Copilot for Security search and use the content to respond.
Automating Incident Triage with Copilot for Security - When speaking with Copilot for Security customers, automation is often brought up as a topic of exploration. Customers are eager to extend their existing SOAR investments or workflows to include Copilot because they recognize the capabilities this new technology brings and believe it has the potential to further increase productivity.
Copilot for Security Better Prompts: Sentinel Incident Title Over Object ID - Directing Copilot for Security to reply with the exact information you need and in the way you need it is important. It saves time, saves compute, and eliminates unnecessary prompt strings.
Enhancement: Copilot for Security Hunt Suggestions - Hunting operations are still a critical piece for cybersecurity teams. And determining what to hunt for still serves a level of angst.
Audio/Visual Prompts
Microsoft Copilot Security Integration with Defender for Cloud | In the Field #49:
A closer look at Microsoft Copilot for Security:
Collateral Prompts
WHITEPAPER: Benefits of security and IT teams using Microsoft Copilot for Security?
✅ Simplifying the complex and driving efficiency with AI-assisted insights and recommended actions.
✅ Enhancing skills and confidence—especially for novices—with insights and guidance in natural language.
✅ Improving speed and efficiency of operations tasks, such as writing complex queries, summarizing incidents, and providing remediation steps.
See the full list in the white paper: https://msft.it/6044YcD8E
New KQL queries to identify Copilot for Security activity:
Defender (unified) console: https://github.com/rod-trent/Copilot-for-Security/blob/main/Other/Queries/Defender_XDR_Activity.kql
Intune: https://github.com/rod-trent/Copilot-for-Security/blob/main/Other/Queries/Intune_Activity.kql
Locates who accessed the Defender Threat Intelligence Portal from Copilot for Security: https://github.com/rod-trent/Copilot-for-Security/blob/main/Other/Queries/TI_Portal_From_CfS.kql
Copilot for Security Custom Plugin - API - Get IP Information from IP Geo Location - Copilot for Security Plugin to gather location and ISP (Organisation) for an IP Address using IP Geo Location.
Copilot for Security Custom Plugin - API - Get IP Information from IP Quality Score - Copilot for Security Plugin to gather type, location, reputation score, and abuse velocity for an IP Address using IP Quality Score.
Copilot for Security Custom Plugin - API - Get User Account Breach Information from Have I Been Pwned - Copilot for Security Plugin to gather list of breaches for a user account using Have I Been Pwned.
Partner Prompts
DIFENDA: Threat Hunting with Microsoft Copilot for Security | Webinar - This live Q&A will help you understand the importance of threat hunting to your cybersecurity strategy and how we harness the power of Microsoft Copilot for Security to proactively combat cyber threats. Wednesday June 26, 2024, at 10am PT | 1pm ET
BLUEVOYANT: Best Practices for Leveraging Microsoft Copilot for Security | Report - This report offers essential guidance on maximizing the security features of Microsoft Copilot for Security. Authored by BlueVoyant, a key member of Microsoft’s Design Advisory Council, this guide provides a unique, early-access perspective on the product. It is designed for professionals across all security roles, detailing practical strategies to enhance security using Copilot’s capabilities. This comprehensive resource ensures that any user can effectively implement and benefit from Copilot’s advanced security measures.
Custom Prompts (related)
Pricing Update: Token Based Billing for Fine Tuning Training - We’re updating our billing for fine tuning with the Azure OpenAI Service to bill based on the number of tokens in your training file – instead of the total elapsed training time.
Scoped Prompting vs Open Prompting: A Comparative Analysis - Natural language generation (NLG) is the task of producing natural language text from non-linguistic data, such as images, tables, graphs, or structured information. NLG systems can be used for various purposes, such as summarization, translation, dialogue, storytelling, and content creation. However, designing an effective NLG system is not a trivial task, as it requires a careful balance between the quality, diversity, and relevance of the generated text.
News Prompts
Microsoft Copilot for Security Attains ISO 27001, 27017, and 27018 Certifications - We are thrilled to announce that Microsoft Copilot for Security, the first Generative Artificial Intelligence (GAI) security solution, has earned the prestigious ISO 27001, 27017, and 27018 certifications. Copilot for Security streamlines compliance endeavors by meeting rigorous regulatory standards.
Copilot for Security in Defender for Cloud is now in public preview. And here's the docs you need:
Copilot for Security in Defender for Cloud (Preview) https://learn.microsoft.com/en-us/azure/defender-for-cloud/copilot-security-in-defender-for-cloud
Analyze recommendations with Copilot for Security: https://learn.microsoft.com/en-us/azure/defender-for-cloud/analyze-with-copilot
Summarize recommendations with Copilot for Security: https://learn.microsoft.com/en-us/azure/defender-for-cloud/summarize-with-copilot
Remediate code with Copilot for Security: https://learn.microsoft.com/en-us/azure/defender-for-cloud/remediate-code-with-copilot
Prompt of the Week
Give me the total number of devices that are being managed in Intune along with how they are enrolled. Supply the response in a format I can use in a report for budgeting purposes. Also include a format I can use in a Power BI report.
https://github.com/rod-trent/Copilot-for-Security/blob/main/Prompts/Plugins/Intune.md