Microsoft Defender for Endpoint
E197889
Microsoft Defender for Endpoint is an enterprise-grade endpoint security platform from Microsoft that provides advanced threat protection, detection, and response capabilities across organizational devices and networks.
All labels observed (3)
| Label | Occurrences |
|---|---|
| Microsoft Defender for Endpoint canonical | 10 |
| Endpoint Protection | 1 |
| Windows Defender Advanced Threat Protection | 1 |
Statements (51)
| Predicate | Object |
|---|---|
| instanceOf |
endpoint security platform
ⓘ
enterprise security product ⓘ |
| abbreviation | MDE ⓘ |
| category |
antivirus and antimalware solution
ⓘ
endpoint detection and response solution ⓘ extended detection and response solution ⓘ |
| deploymentModel |
cloud-based
ⓘ
hybrid ⓘ |
| developer | Microsoft ⓘ |
| feature |
API access for integration
ⓘ
advanced hunting queries ⓘ alert correlation and incident grouping ⓘ centralized security management console ⓘ endpoint timeline and forensics ⓘ role-based access control ⓘ |
| formerlyKnownAs |
Microsoft Defender for Endpoint
self-linksurface differs
ⓘ
surface form:
Windows Defender Advanced Threat Protection
|
| integratesWith |
Azure Active Directory
ⓘ
Microsoft 365 Defender ⓘ
surface form:
Microsoft 365 Defender portal
Microsoft Defender for Cloud Apps ⓘ Microsoft Defender for Identity ⓘ Intune ⓘ
surface form:
Microsoft Intune
Microsoft Sentinel ⓘ System Center Configuration Manager ⓘ |
| operatesOn |
Android
ⓘ
Linux ⓘ Windows ⓘ Windows Server ⓘ iOS ⓘ macOS ⓘ |
| partOf |
Microsoft 365 Defender
ⓘ
Microsoft 365 Defender ⓘ
surface form:
Microsoft Defender
|
| provides |
attack surface reduction
ⓘ
automated investigation and remediation ⓘ device control ⓘ endpoint behavioral sensors ⓘ endpoint detection and response ⓘ endpoint firewall management ⓘ endpoint-based attack surface reduction rules ⓘ next-generation protection ⓘ threat and vulnerability management ⓘ web content filtering ⓘ |
| securityDomain |
endpoint protection
ⓘ
incident response ⓘ threat detection ⓘ |
| supports |
network devices via integrations
ⓘ
onboarded devices ⓘ |
| targetUser |
enterprise organizations
ⓘ
managed security service providers ⓘ |
| uses |
cloud-based analytics
ⓘ
machine learning ⓘ threat intelligence from Microsoft security graph ⓘ |
Referenced by (12)
Full triples — surface form annotated when it differs from this entity's canonical label.
subject surface form:
Microsoft Intune
Microsoft Defender for Endpoint
→
formerlyKnownAs
→
Microsoft Defender for Endpoint
self-linksurface differs
ⓘ
this entity surface form:
Windows Defender Advanced Threat Protection
this entity surface form:
Endpoint Protection