Endpoint Protection Platform Tools
Endpoint Protection Platforms (EPP) that combine antivirus, anti-malware, firewall, and intrusion prevention for comprehensive endpoint protection.
Browse 202 endpoint protection platform tools
FEATURED
USE CASES
Zero-trust kernel virtualization platform for endpoint defense and threat containment
A cross-platform security application that functions as a laptop kill cord, automatically locking or shutting down your computer when physically separated from you via a USB connection.
AI-powered endpoint security with prevention-first approach and EDR capabilities
Unified security platform with EPP, EDR, XDR, and MDR capabilities
Malware scanning and removal tool with real-time protection capabilities
Anti-spyware tool that monitors app activities and prevents malware execution
Windows anti-forensics USB monitoring tool with the ability to shutdown the computer upon detecting the unplugging of a specified USB device.
A Windows security hardening tool that disables potentially dangerous features in Windows 10/11 and common applications to reduce attack surface for individual users.
A command-line tool that secures shell command history by clearing sensitive commands, displaying command summaries, and providing stash functionality for presentations across multiple shell environments.
A security checklist app for your Mac that helps you with basic security hygiene and prevents 80% of problems.
Automated and flexible approach for deploying Windows 10 with security standards set by the DoD.
A repository containing scripts and configuration files to help administrators implement Microsoft AppLocker for application whitelisting based on NSA security guidelines.
Firejail is a Linux sandbox program that isolates untrusted applications using kernel namespaces, seccomp-bpf, and capabilities to reduce security breach risks.
shellfirm will prompt challenges to verify risky shell commands, acting as a captcha for your terminal.
An anti-forensic kill-switch tool for USB ports to shut down the computer immediately in case of unauthorized access.
A daemon for blocking USB keystroke injection devices on Linux systems
Santa is a macOS binary and file access authorization system that monitors executions and makes allow/block decisions based on local database rules.
Firewall, Blackhole, and Privatizing Proxy for macOS with comprehensive security features.
ARM TrustZone provides a secure execution environment for applications on ARM processors.
DocBleach is a Content Disarm and Reconstruction software that sanitizes Office documents by removing potentially malicious dynamic content to prevent security threats.
A laser tripwire device that automatically hides windows, locks computers, or executes custom scripts when motion is detected within 120cm range.
Stronghold is the easiest way to securely configure your Mac.
Enhances Windows OS security through system modifications and settings adjustments.
An anti-forensic Linux Kernel Module kill-switch for USB ports.
Endpoint Protection Platform Tools FAQ
Common questions about Endpoint Protection Platform tools, selection guides, pricing, and comparisons.
Legacy antivirus relies on signature databases that match known malware hashes. NGAV uses machine learning models, behavioral analysis, and exploit prevention to detect both known and unknown threats. NGAV catches fileless malware, zero-day exploits, and polymorphic threats that change signatures. Most modern EPP solutions include NGAV as their prevention engine.
Yes. Out of 24 endpoint protection platform tools listed on CybersecTools, 19 are free and 5 are commercial. Free tools work well for small teams, testing, and budget-conscious organizations. Commercial tools typically add enterprise features, dedicated support, and SLA guarantees.
