Wider attack surface coverage powered by hundreds of integrations and deeper threat visibility powered by thousands of detections.
Version: Microsoft Defender for Endpoint
Microsoft Defender for Endpoint is an enterprise endpoint security platform designed to help enterprise networks prevent, detect, investigate, and respond to advanced threats.
Netsurion's Open XDR platform monitors events from the Microsoft Defender for Endpoint. Dashboard and reports in Netsurion, will help you track, alert information, and alert evidence with help to detect file-less attacks, backdoor drops, and virus/malware.
Netsurion Data Source Integration for Microsoft Defender for Endpoint allows you to monitor the following components:
After the events are received into Netsurion, the alerts, reports, and dashboards can be configured into Netsurion.
The configuration details are consistent with Netsurion version 9.3 and later, and Microsoft Defender for Endpoint.
Download Integration Guide, How-to Guide, and Microsoft Defender for Endpoint integrator 1.0.0 for more information and to configuration instructions.