azure-external-attack-surface-management

Compare original and translation side by side

🇺🇸

Original

English

🇨🇳

Translation

Chinese

Azure External Attack Surface Management Skill

This skill provides expert guidance for Azure External Attack Surface Management. Covers limits & quotas, configuration, and integrations & coding patterns. It combines local quick-reference content with remote documentation fetching capabilities.

本Skill为Azure External Attack Surface Management提供专业指导，涵盖限制与配额、配置、集成与编码模式。它结合了本地快速参考内容与远程文档获取能力。

How to Use This Skill

如何使用本Skill

IMPORTANT for Agent: Use the Category Index below to locate relevant sections. For categories with line ranges (e.g.,
L35-L120
), use
read_file
with the specified lines. For categories with file links (e.g.,
[security.md](security.md)
), use
read_file
on the linked reference file

IMPORTANT for Agent: If
metadata.generated_at
is more than 3 months old, suggest the user pull the latest version from the repository. If
mcp_microsoftdocs
tools are not available, suggest the user install it: Installation Guide

This skill requires network access to fetch documentation content:

Preferred: Use

mcp_microsoftdocs:microsoft_docs_fetch

with query string

from=learn-agent-skill

. Returns Markdown.

Fallback: Use

fetch_webpage

with query string

from=learn-agent-skill&accept=text/markdown

. Returns Markdown.

Agent重要提示：使用下方的分类索引查找相关章节。对于带有行范围的分类（例如
L35-L120
），使用
read_file
读取指定行内容。对于带有文件链接的分类（例如
[security.md](security.md)
），使用
read_file
读取链接的参考文件

Agent重要提示：如果
metadata.generated_at
已超过3个月，建议用户从仓库拉取最新版本。如果
mcp_microsoftdocs
工具不可用，建议用户安装：安装指南

本Skill需要网络访问权限以获取文档内容：

优先方式：使用
```
mcp_microsoftdocs:microsoft_docs_fetch
```
，查询字符串为
```
from=learn-agent-skill
```
，返回Markdown格式内容。
备用方式：使用
```
fetch_webpage
```
，查询字符串为
```
from=learn-agent-skill&accept=text/markdown
```
，返回Markdown格式内容。

Category Index

分类索引

Category	Lines	Description
Limits & Quotas	L31-L35	Explains how Defender EASM billing works, what counts as a billable asset, and how asset counts affect costs and quotas.
Configuration	L36-L49	Filtering and querying EASM inventory by asset type (domains, hosts, IPs/blocks, ASNs, pages, contacts, SSL certs) and configuring policy engine automation rules.
Integrations & Coding Patterns	L50-L53	Configuring Defender EASM to export discovery and asset data into Log Analytics and Azure Data Explorer, including connection setup and data usage for analysis.

分类	行范围	描述
限制与配额	L31-L35	说明Defender EASM的计费方式、可计费资产的定义，以及资产数量对成本和配额的影响。
配置	L36-L49	按资产类型（域名、主机、IP/IP段、ASN、页面、联系人、SSL证书）过滤和查询EASM资产清单，以及配置策略引擎自动化规则。
集成与编码模式	L50-L53	配置Defender EASM将发现数据和资产数据导出至Log Analytics和Azure Data Explorer，包括连接设置和数据分析的数据使用方法。

Limits & Quotas

限制与配额

Topic	URL
Understand Defender EASM billing and billable asset counts	https://learn.microsoft.com/en-us/azure/external-attack-surface-management/understanding-billable-assets

主题	链接
了解Defender EASM计费与可计费资产数量	https://learn.microsoft.com/en-us/azure/external-attack-surface-management/understanding-billable-assets

Configuration

配置

Topic	URL
Use ASN asset filters in Defender EASM inventory	https://learn.microsoft.com/en-us/azure/external-attack-surface-management/asn-asset-filters
Use contact asset filters in Defender EASM inventory	https://learn.microsoft.com/en-us/azure/external-attack-surface-management/contact-asset-filters
Apply domain asset filters in Defender EASM inventory	https://learn.microsoft.com/en-us/azure/external-attack-surface-management/domain-asset-filters
Apply host asset filters in Defender EASM inventory	https://learn.microsoft.com/en-us/azure/external-attack-surface-management/host-asset-filters
Use Defender EASM inventory filters and saved queries	https://learn.microsoft.com/en-us/azure/external-attack-surface-management/inventory-filters
Use IP address asset filters in Defender EASM	https://learn.microsoft.com/en-us/azure/external-attack-surface-management/ip-address-asset-filters
Use IP block asset filters in Defender EASM	https://learn.microsoft.com/en-us/azure/external-attack-surface-management/ip-block-asset-filters
Apply page asset filters in Defender EASM inventory	https://learn.microsoft.com/en-us/azure/external-attack-surface-management/page-asset-filters
Configure Defender EASM policy engine automation rules	https://learn.microsoft.com/en-us/azure/external-attack-surface-management/policy-engine
Use SSL certificate asset filters in Defender EASM	https://learn.microsoft.com/en-us/azure/external-attack-surface-management/ssl-certificate-asset-filters

主题	链接
在Defender EASM资产清单中使用ASN资产过滤器	https://learn.microsoft.com/en-us/azure/external-attack-surface-management/asn-asset-filters
在Defender EASM资产清单中使用联系人资产过滤器	https://learn.microsoft.com/en-us/azure/external-attack-surface-management/contact-asset-filters
在Defender EASM资产清单中应用域名资产过滤器	https://learn.microsoft.com/en-us/azure/external-attack-surface-management/domain-asset-filters
在Defender EASM资产清单中应用主机资产过滤器	https://learn.microsoft.com/en-us/azure/external-attack-surface-management/host-asset-filters
使用Defender EASM资产清单过滤器与已保存查询	https://learn.microsoft.com/en-us/azure/external-attack-surface-management/inventory-filters
在Defender EASM中使用IP地址资产过滤器	https://learn.microsoft.com/en-us/azure/external-attack-surface-management/ip-address-asset-filters
在Defender EASM中使用IP段资产过滤器	https://learn.microsoft.com/en-us/azure/external-attack-surface-management/ip-block-asset-filters
在Defender EASM资产清单中应用页面资产过滤器	https://learn.microsoft.com/en-us/azure/external-attack-surface-management/page-asset-filters
配置Defender EASM策略引擎自动化规则	https://learn.microsoft.com/en-us/azure/external-attack-surface-management/policy-engine
在Defender EASM中使用SSL证书资产过滤器	https://learn.microsoft.com/en-us/azure/external-attack-surface-management/ssl-certificate-asset-filters

Integrations & Coding Patterns

集成与编码模式

Topic	URL
Configure Defender EASM data connections to Log Analytics and ADX	https://learn.microsoft.com/en-us/azure/external-attack-surface-management/data-connections

主题	链接
配置Defender EASM与Log Analytics和ADX的数据连接	https://learn.microsoft.com/en-us/azure/external-attack-surface-management/data-connections