THE PROMPT for Security Copilot - Issue #25

World Dominating

Apr 18, 2025

My Prompts

Happy Friday everyone! Welcome to this week's edition of the Security Copilot Newsletter.

In this week's edition, we delve into the transformative power of Microsoft Security Copilot for Microsoft Intune. Organizations are constantly striving to streamline operations, enhance security, and empower IT teams to make informed decisions with agility. Microsoft Intune, a leading endpoint management solution, has consistently set the benchmark for device and application management. Now, an AI-driven tool, Microsoft Security Copilot, is poised to further transform the landscape, amplifying decision-making capabilities to unprecedented levels.

Stay tuned as we explore the latest features, settings, and promptbooks available with Security Copilot, and how you can leverage this powerful tool to proactively identify and prioritize vulnerabilities.

Talk soon.

-Rod

Community Prompts

Enhance Decision-Making with Microsoft Security Copilot for Microsoft Intune - Organizations strive to streamline operations, enhance security, and empower IT teams to make informed decisions with agility. Microsoft Intune, a leading endpoint management solution, has consistently set the benchmark for device and application management. Now, an AI-driven tool, Microsoft Security Copilot, is poised to further transform the landscape, amplifying decision-making capabilities to unprecedented levels.

Security Copilot with Entra and Intune: The Ultimate Trio for Cybersecurity (and Maybe World Domination) - Part 2 - In part 2 I will go over what Microsoft features are available with Security Copilot, how you can use it in the embedded and standalone version. I will go over the settings, prompts and promptbooks.

Using Security Copilot to Proactively Identify and Prioritize Vulnerabilities - There are many ways to leverage the power of Security Copilot. In this blog we look at how we can use AI to help with alerting to vulnerabilities which need to be treated as a high priority.

Rod’s Blog

Who does it better? Or Worse? Generative AI for KQL

I have an upcoming session where I’ll be talking about the various Generative AI infused tools to help security analysts and engineers. I’ll be showing demos of the differences between the tools and making recommendations on which to use in specific scenarios. If you’re interested in attending this session, stay tuned to this blog for details to come la…

3 months ago · 2 likes · 2 comments · Rod Trent

Collateral Prompts

Splunk Plugin - This plugin allows Security Copilot users to make calls to the Splunk REST API. Currently the following functionalities are supported:

Performing normal and one-shot ad-hoc SPL queries.
Creating, retrieving, and dispatching saved searches in Splunk.
Retrieving and viewing information about fired alerts from saved searches in Splunk.
Getting information about currently running search jobs in Splunk.

Prompt of the Week

Investigate recent suspicious PowerShell activity or script executions and identify whether they align with known attack vectors.

https://github.com/rod-trent/Security-Copilot/blob/main/Prompts/Plugins/NL2KQL.md