Illusive Attack Surface Manager shares attack surface analysis and incident logs with Azure Sentinel
Attack surface reduction is a powerful, innovative technique to deprive cyber attackers of the means with which they commit crimes: privileged credentials and remnant network connections. On average, 19% of an organization's endpoints contain accessible privileged credentials, which attackers can easily seize and to infiltrate the network and move laterally towards crown jewels and high value assets.
Why leave privileged credentials and connections lying around... if you can clean them up? This important discovery and cleansing capability, created by Illusive, delivers immediate value to Microsoft customers seeking to protect their environments from nation-state attackers and insider threats.
The Illusive Attack Management System data connector allows you to share Illusive’s attack surface analysis data and incident logs with Azure Sentinel and view this information in dedicated dashboards that offer insight into your organization’s attack surface risk (Sentinel ASM Dashboard) and track unauthorized lateral movement in your organization’s network (Sentinel ADS Dashboard). With this capability, users of Azure Sentinel can monitor their attack surface credential and connection risk, and stop attackers in their network by leveraging high-fidelity Illusive alerts.
 Source: Illusive