Microsoft Defender for Endpoint is a comprehensive endpoint security solution that provides industry-leading, multi-platform detection and response capabilities. It uses AI-powered security to amplify security teams' strengths, and provides a unified security operations platform to detect and disrupt cyberthreats in near real-time. Key capabilities include automatic attack disruption, global threat intelligence, and simplified endpoint management. It also features Microsoft Copilot for Security, which allows for natural language queries to investigate incidents, and integrates with the Microsoft Security suite of products. Microsoft Defender for Endpoint provides a unified portal for security operations, combining extended detection and response (XDR) and security information and event management (SIEM) capabilities.
FEATURES
ALTERNATIVES
A collection of scripts to harden Windows 10 security and privacy
SentinelOne's Singularity Platform is an AI-powered enterprise security platform providing autonomous endpoint, cloud, identity, and data protection through its integrated XDR solution.
Webroot Endpoint Protection provides advanced cloud-based protection against malicious files, scripts, exploits, and URLs to keep businesses safe from cyberattacks.
An endpoint monitoring tool for Linux and macOS that reports file, socket, and process events to Zeek.
Doorman is an osquery fleet manager that allows administrators to remotely manage the osquery configurations retrieved by nodes.
Cisco Secure Endpoint is a cloud-native endpoint security solution that provides advanced protection and response to threats.
OpenEDR is an open-source platform enhancing cybersecurity through real-time detection and analysis of cyber threats.
All-in-one protection solution for individuals and families, offering antivirus, VPN, identity, and privacy protection.
PINNED

InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.