Endpoint Security Tools
Endpoint security tools for protecting desktops, laptops, mobile devices, and IoT endpoints from malware and cyber threats.
Browse 396 endpoint security tools
FEATURED
USE CASES
Do Not Disturb is a free open-source macOS security tool that detects unauthorized physical access to laptops.
A cross-platform security application that functions as a laptop kill cord, automatically locking or shutting down your computer when physically separated from you via a USB connection.
Comprehensive cybersecurity platform for hybrid and multi-cloud environments
AI-powered endpoint security with prevention-first approach and EDR capabilities
Unified security platform with EPP, EDR, XDR, and MDR capabilities
Multiplatform endpoint security with detection and response capabilities
AI-powered endpoint protection, detection, and response platform
Malware scanning and removal tool with real-time protection capabilities
Anti-spyware tool that monitors app activities and prevents malware execution
Open-source tool for monitoring macOS hosts with detailed system activity insights.
A behavior-based malware detection system for Android platforms that uses crowdsourcing to detect anomalies and malware in applications.
A collection of mobile security resources with tools, white papers, ebooks, and webinars.
A Unix-based tool that scans for rootkits and other malware on a system, providing a detailed report of the scan results.
LinkLiar is a status menu app for spoofing MAC addresses to enhance privacy on MacBook.
An Event Hub to gather, process, and monitor system events and link them to an inventory.
An endpoint monitoring tool for Linux and macOS that reports file, socket, and process events to Zeek.
A bash-based anti-forensic script that monitors USB ports and triggers system shutdown when unauthorized devices are detected.
Windows anti-forensics USB monitoring tool with the ability to shutdown the computer upon detecting the unplugging of a specified USB device.
A Windows security hardening tool that disables potentially dangerous features in Windows 10/11 and common applications to reduce attack surface for individual users.
A command-line tool that secures shell command history by clearing sensitive commands, displaying command summaries, and providing stash functionality for presentations across multiple shell environments.
Monitor WMI consumers and processes for potential malicious activity
A security checklist app for your Mac that helps you with basic security hygiene and prevents 80% of problems.
A script that validates Group Policy Object audit settings required for proper Microsoft Defender for Endpoint functionality.
Endpoint Security Specializations
396 tools across 5 specializations · 70 free, 326 commercial
Endpoint Detection and Response
Endpoint Detection and Response (EDR) solutions for real-time endpoint monitoring, threat detection, incident investigation, and automated response on endpoints.
Endpoint Protection Platform
Endpoint Protection Platforms (EPP) that combine antivirus, anti-malware, firewall, and intrusion prevention for comprehensive endpoint protection.
Mobile Data Protection
Mobile data protection solutions for securing corporate data on smartphones, tablets, and mobile devices.
Articles About Endpoint Security
Tool roundups, buying guides, and strategic analysis from the CybersecTools resource library.
Endpoint Security Tools FAQ
Common questions about Endpoint Security tools, selection guides, pricing, and comparisons.
EPP (Endpoint Protection Platform) focuses on prevention, blocking known malware, exploits, and malicious files before they execute. EDR (Endpoint Detection and Response) assumes some threats will bypass prevention, providing real-time monitoring, threat detection, investigation, and response capabilities. Modern endpoint security platforms combine both EPP and EDR in a single agent.
Most modern EDR solutions include next-gen antivirus (NGAV) capabilities, making standalone antivirus redundant. EDR goes beyond signature-based detection with behavioral analysis, machine learning, and threat hunting. If your EDR vendor includes NGAV (which most do), you do not need a separate antivirus product.
CrowdStrike Falcon excels in threat intelligence and managed detection with its cloud-native architecture. SentinelOne offers strong autonomous response and rollback capabilities with competitive pricing. Microsoft Defender for Endpoint integrates deeply with the Microsoft ecosystem at lower cost for E5 customers. The right choice depends on your existing stack, budget, and whether you need managed threat hunting.
MTD protects smartphones and tablets from mobile-specific threats: malicious apps, network attacks (man-in-the-middle on public WiFi), OS vulnerabilities, and phishing via SMS/messaging. If your employees access corporate data from mobile devices, MTD is essential, as traditional endpoint security agents do not work on iOS and Android.
Yes. Out of 24 endpoint security tools listed on CybersecTools, 18 are free and 6 are commercial. Free tools work well for small teams, testing, and budget-conscious organizations. Commercial tools typically add enterprise features, dedicated support, and SLA guarantees.
