Microsoft Defender for Endpoint
Microsoft Defender for Endpoint is a comprehensive endpoint security solution that provides industry-leading, multi-platform detection and response capabilities. It uses AI-powered security to amplify security teams' strengths, and provides a unified security operations platform to detect and disrupt cyberthreats in near real-time. Key capabilities include automatic attack disruption, global threat intelligence, and simplified endpoint management. It also features Microsoft Copilot for Security, which allows for natural language queries to investigate incidents, and integrates with the Microsoft Security suite of products. Microsoft Defender for Endpoint provides a unified portal for security operations, combining extended detection and response (XDR) and security information and event management (SIEM) capabilities.
FEATURES
SIMILAR TOOLS
CrowdStrike Falcon Insight XDR is an AI-powered endpoint detection and response solution that provides comprehensive protection, visibility, and automated response capabilities.
A simple ransomware protection that intercepts and kills malicious processes attempting to delete shadow copies using vssadmin.exe.
Unified defense platform providing endpoint protection, extended detection and response, threat hunting, and digital forensics and incident response.
Absolute Security provides a comprehensive cybersecurity platform that offers endpoint-to-network access coverage, automated security compliance, and secure endpoint and access solutions.
A free, open-source tool that uncovers persistently installed software on macOS, helping to generically reveal malware.
Android Loadable Kernel Modules for reversing and debugging on controlled systems/emulators.
An endpoint monitoring tool for Linux and macOS that reports file, socket, and process events to Zeek.
OpenEDR is an open-source platform enhancing cybersecurity through real-time detection and analysis of cyber threats.
A library to access and parse the Microsoft Internet Explorer Cache File format.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.