Agents for Admins

A community-driven catalog of ready-to-use agents for the Microsoft Security Copilot portal. Each agent is packaged so security teams can quickly import proven workflows into their tenant or contribute new ones for others to use.

Agents For Admins is a community-led resource and is not an official Microsoft website.

Browse Agents Submit Your Agent Join the Community

Scroll

How It Works

Launch a trusted agent in minutes

Follow a lightweight three-step path to bring Microsoft Security Copilot automation into production.

Choose a workflow

Filter by Microsoft service and read the changelog to find an agent that matches your security scenario.

Import with confidence

Each agent ships as a reusable YAML file with clear inputs and outputs so you can import it straight into the Security Copilot portal.

Run and iterate

Execute the agent, capture lessons learned, and share improvements back with the community so everyone benefits.

Top Security Copilot Agents

Enterprise-ready agents for Defender XDR, Entra ID, and Intune ranked by real-world adoption and download momentum.

Browse All Agents

Community momentum

Built together by admins for admins

Thousands of security practitioners collaborate here to keep Microsoft Security Copilot skills sharp and share what works in the field.

—

Agents available

—

Catalog last updated

100%

Open source & community led

Connect with maintainers, ask questions, and propose ideas in the LinkedIn community group. It's where roadmap discussions and live workshops happen first.

Join the LinkedIn group

Contribute an Agent

Share proven workflows with security teams everywhere

The hub thrives on community contributions. Follow the open review process to help teams detect, respond, and automate faster.

Package your workflow

Document the prompts, expected inputs, and outputs in the provided YAML template so others can easily import it.

Submit a pull request

Open a PR with your agent, testing notes, and any screenshots that help reviewers understand the use case.

Receive community feedback

Core maintainers and peer reviewers validate the agent before it is published to the catalog.

Need a primer? Review the contribution checklist covering naming conventions, metadata requirements, and the validation steps maintainers take before publication.

Read the contribution guide

Built on trust

Safeguards for community-driven automation

Agents For Admins is independent from Microsoft, but we hold ourselves to the same bar for operational safety and transparency.

Transparent provenance

Every agent links to the source repository and includes change history so you can audit exactly what you are importing.

Security-first reviews

Maintainers validate prompts, data access, and abuse scenarios before approving contributions to keep tenants safe.

Open community governance

Decisions, policies, and roadmap discussions happen in the open so anyone can weigh in or propose improvements.

Agents For Admins is an independent community initiative and is not affiliated with or endorsed by Microsoft.