This control plane turns Defender exposure data into one buyer-readable surface: attack-path posture, privileged identity risk, device coverage gaps, stale remediation, and the response packets needed before change windows, audits, or tenant trust drift.
/, /exposure-lane, /control-gaps, /remediation-posture, /verification, /docs
/api/dashboard/summary, /api/exposure-lane, /api/control-gaps, /api/remediation-posture, /api/verification, /api/sample
npx defender-exposure-ops fixtures/defender-exposure-clean.json --format summary renders the same remediation posture the dashboard exposes.