Findings
Generator
Configuration
Lucidum Reverse
Architecture
Statistics
← All Findings
Vendor:
Microsoft Defender for Endpoint
FIN-261
Weight:
5
4
3
2
1
Confidence:
High
Medium
Low
Edited:
2026-03-06 09:03
Verified
What It Detects
Device has no machine tags applied in Microsoft Defender for Endpoint. Tags are essential for asset classification, policy scoping, and operational filtering. Without tags, the device cannot be efficiently included in targeted security policies, reporting groups, or automated response workflows.
MITRE ATT&CK Techniques
Comma-separated, e.g. T1078, T1190
Checks
read-only
Field
Operator
Value
machineTags
is_empty
True
Remediation
×
×
×
+ Add item
Why It Matters
×
×
×
+ Add item
Save Changes
Export Lucidum