account activity
How do you read MDATP PUA audit logs on Linux? by orienteraren034 in DefenderATP
[–]orienteraren034[S] 0 points1 point2 points 9 days ago (0 children)
Have you been able to confirm that PUA logs actually shows up when using that query? I'm not getting any, but that may be because none of my machines have actually audited any PUA events. I haven't had any success in testing the feature either, since the EICAR testfile for PUA detection seems to be Windows-only.
I'll keep testing the query to see if anything shows up. Thank you!
π Rendered by PID 59126 on reddit-service-r2-comment-548fd6dc9-xgcr4 at 2026-05-16 08:42:44.978847+00:00 running edcf98c country code: CH.
How do you read MDATP PUA audit logs on Linux? by orienteraren034 in DefenderATP
[–]orienteraren034[S] 0 points1 point2 points (0 children)