Microsoft Defender for Endpoint

Version: Microsoft Defender for Endpoint

Microsoft Defender for Endpoint is an enterprise endpoint security platform designed to help enterprise networks prevent, detect, investigate, and respond to advanced threats.

Netsurion Open XDR monitors events from Microsoft Defender for Endpoint, and provides dashboards and reports that help you detect file-less attacks, backdoor drops, and virus/malware.

Netsurion Data Source Integration for Microsoft Defender for Endpoint allows you to monitor the following components: 

  • Security: Information related to the alerts triggered by Microsoft Defender.

After the events are received into Netsurion Open XDR, the alerts, reports, and dashboards can be configured into Netsurion Open XDR.

To take advantage of this data source integration and to learn more about alerts, reports, and dashboards, contact your Technical Account Manager (TAM). If you are not currently a Netsurion customer or partner, contact us to learn more.