Merge pull request #199 from kaanekici/fix-dfe-username-missing-bug

Fix missing username for defender for endpoint query

products/microsoft_defender_for_endpoints.py

@@ -130,8 +130,10 @@ def _post_advanced_query(self, data: dict, headers: dict) -> list[Result]:
                         raw_results.append(res)
                     '''
                     hostname = res['DeviceName'] if 'DeviceName' in res else 'Unknown'
+
                     if 'AccountName' in res or 'InitiatingProcessAccountName' in res:
                         username = res['AccountName'] if 'AccountName' in res else res['InitiatingProcessAccountName']
+                    else:
                         username = 'Unknown'
 
                     if 'ProcessCommandLine' in res or 'InitiatingProcessCommandLine' in res: