Our Solution
Back
OUR SOLUTION
WHY NETSURION
Back
WHY NETSURION
Partners
Back
PARTNER PROGRAM OVERVIEW
- Partner Program Benefits
  Our solutions are built for service providers
- Become a Partner
  Grow your cybersecurity practice
Insights
Back
VIEW ALL INSIGHTS
Company
Back
MEET NETSURION

MyNetsurion

Support

Partner Portal

Contact Us

Knowledge Packs

Documentation
- Latest Version Docs
- Product Guides
Knowledge Packs
Software Updates
Supported Devices
Knowledgebase
Online Training
Online Help
- EventTracker 9.x
FAQs
- Product FAQs
- EventTracker Events

HomeKnowledge Packs Microsoft Defender Endpoint

Microsoft Defender for Endpoint

OverviewResources

Applies to: Microsoft Defender for Endpoint

Overview

Microsoft Defender for Endpoint is an enterprise endpoint security platform designed to help enterprise networks prevent, detect, investigate, and respond to advanced threats.

Netsurion monitors events from the Microsoft Defender for Endpoint. Dashboard and reports in Netsurion's threat protection platform, EventTracker, will help you track, alert information, and alert evidence with help to detect file-less attacks, backdoor drops, and virus/malware.

Netsurion Knowledge Pack for Microsoft Defender for Endpoint allows you to monitor the following components:

Security: Information related to the alerts triggered by Microsoft Defender.

..

Previous Next

After the events are received into EventTracker, the alerts, reports, and dashboards can be configured into EventTracker.

Security

Alerts

Microsoft Defender for Endpoint - Critical threat detected: This alert indicates that a critical threat is detected in Microsoft Defender for Endpoint.

Reports

Microsoft Defender for Endpoint - Alerts detail: This report provides a detailed summary of defender alerts in Microsoft Defender for Endpoint. It contains a source IP address, remote IP address, alert ID, detection source, attack technique, severity, device name, remote URL, threat family, and more.

Scope

The configuration details are consistent with EventTracker version 9.3 and later, and Microsoft Defender for Endpoint.

Documentation

To configure Microsoft Defender for Endpoint to send logs to EventTracker, refer to the How-to Guide.

For more information please refer to the Integration Guide.

Download Microsoft Defender for Endpoint integrator 1.0.0.

NEW

September 2022

Azure Data Factory
Azure Application Gateway

August 2022

Mimecast Secure Email Gateway
Azure Active Directory

July 2022

Azure Database for MySQL
AWS Config
AWS CloudTrail
AWS Certificate Manager

June 2022

Azure Cache for Redis
Kemp Load Balancer
Snort IDS
InQuest
Microsoft Intune

This site uses cookies to store information on your computer. Some are essential to make our site work; others help us improve the user experience. By using the site, you consent to the placement of these cookies. Read our Privacy Statement to learn more.

I Accept

Contact Us

Customer Support
partners@netsurion.com
sales@netsurion.com

Partners

Partner Program Overview
Partner Program Benefits
Become a Partner
Partner Portal Login

Quick Links

Why Netsurion
Blog
Careers
Our Solution

Terms of Use
|
Privacy Policy
|
Soc 2 Type 2 Compliant
|
Contact Us
|
Sitemap
|