Microsoft Defender for Endpoint (formerly Microsoft Defender ATP)

Microsoft Defender for Endpoint (formerly Microsoft Defender ATP) Reviews

Do you work for this company? Learn how we help vendors

Ratings and Reviews
(1-7 of 7)

Companies can't remove reviews or game the system. Here's why
Joe Aldeguer | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Review Source
  • Compatible with macOS, iOS, Android, Windows Server, Windows 10 and Linux
  • It runs natively on Windows it is not a bolted on solution. Once you have the correct license it is easy enough to light up the application to protect the endpoint
  • Integrated with Microsoft Intune
  • It is designed to detect and remediate adversary tactics from the MITRE knowledge base.
  • Microsoft analyzes billions of signals daily to detect attacks against O365 tenants these same signals are fed into ML to further fine-tune MDE. How many other solutions out there will have access to this vast amount of data to analyze to train their ML?
  • Automated detection and remediation of threats with a graphical timeline view of how the treat got into the device and was stopped
  • It has its own vulnerability scanner to feed data into the dashboard so you can see daily which endpoints need to be patch first based on its value
  • It comes with an advanced hunting tool using the kusto query language to search your tenant for threats
  • It can keep 180 days of log data
  • From one bundled license I can protect Exchange online email, Sharepoint, Microsoft Teams, One Drive, Azure identities, AD, endpoints
  • Web filtering on the macOS it not available yet
  • They recently made it easier to on-board macOS endpoints using Microsoft Intune by deploying it as an app. It used to take a lot of more configuration profiles to set up. For older macOS Sierra using the older extensions it will still require the multiple steps to on-board to MDE
  • They need to integrate Microsoft Cloud app into the new dashboard of MDE
  • Reduce the memory overhead of the mdatp agent running on Linux
Score 8 out of 10
Vetted Review
Verified User
Review Source
  • Great dashboard for the techs on the end of support
  • Provides good notifications for the user
  • Does a great job quarantining questionable emails that may have suspicious links.
  • Stop changing the product name - creates confusion at times
Score 7 out of 10
Vetted Review
Verified User
Review Source
  • One of the undeniable strengths of Windows Defender is that it is free. It already comes packaged with Windows. You don't have to install separately or pay extra for the excellent kind of protection it provides.
  • Unlike all the other anti-virus software out there, the service is very light on the system and one doesn't even get to know when a background check is going on in the background. I never had to open the application to run scans. It automatically keeps running in the background and informs if anything fishy is going on in the background.
  • When it comes to the latest threats and malware, it is not the most updated antivirus software in the market. It can always benefit from quick virus definition updates.
  • It is not a complex antivirus solution when it comes to its feature sets. People who are finicky about each and every feature will be a little disappointed with the lack of options/settings available to configure the antivirus.
Score 10 out of 10
Vetted Review
Verified User
Review Source
  • Visibility: It's great to be able to see what KBs are missing, etc.
  • Lightweight AV protection built on the already included Windows Defender Application
  • Deployment: We've had some issues deploying, especially outside of the Windows environment.
  • Offboarding: There is currently no way to delete a computer. They disappear over time. We even renamed a computer, and it kept both the old and new name in there. Eventually, the older machines do go away, but there is no manual way to do this at the moment.
Danilo Soares Peres | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Review Source
  • Low impact on computer performance.
  • Easy-to-use interface.
  • Several settings that help you customize the software.
  • Virus detection rates are below competitors.
  • Too many notifications that end up bothering.
  • Do not ask every time if you should send reports to Microsoft.
Score 8 out of 10
Vetted Review
Verified User
Review Source
  • It is great at proactively monitoring threats across the network. It works seamlessly with the client to monitor individual user computers, and it has a good real-time scanning engine.
  • On the client side, Windows Defender doesn't require a whole lot of system resources to run, nor will it create unnessary slowdowns of a computer, even while scanning for threats
  • We've noticed one issue with the SmartScreen filter settings on the client and trying to install programs. If the Administrator sets the setting to Block on the server side, then this might interfere with some programs trying to get installed on the client side. Microsoft should look into this issue, and maybe offer more sub-settings for the Block option
  • Noticed that Windows Defender will occassionally do a system scan on a client during business hours, even though on the server side, scans are set for the middle of the night. This does not occur on all endpoints, or at all times, but tends to be random
Score 8 out of 10
Vetted Review
Verified User
Review Source
  • It does not take up a lot of system resources, unlike other 3rd part AV providers.
  • Integrated into the MS product line without having to touch it too much, unlike 3rd part AV providers.
  • Easy to set-up and manage endpoints.
  • It does not break Windows OS like 3rd party AV providers whenever a patch or roll updated is deployed.
  • Detection rates are less than some of the competitors out there.
  • Too many false positives with 3rd part applications.
  • For smaller deployments can get expensive compared to competitors.

Microsoft Defender for Endpoint (formerly Microsoft Defender ATP) Scorecard Summary

Feature Scorecard Summary

Endpoint Security (7)
95%
9.5
Anti-Exploit Technology (5)
92%
9.2
Endpoint Detection and Response (EDR) (5)
97%
9.7
Centralized Management (5)
98%
9.8
Hybrid Deployment Support (4)
89%
8.9
Infection Remediation (5)
92%
9.2
Vulnerability Management (5)
97%
9.7
Malware Detection (5)
97%
9.7

What is Microsoft Defender for Endpoint (formerly Microsoft Defender ATP)?

Microsoft Defender for Endpoint (formerly Microsoft Defender ATP) is a holistic, cloud delivered endpoint security solution that includes risk-based vulnerability management and assessment, attack surface reduction, behavioral based and cloud-powered next generation protection, endpoint detection and response (EDR), automatic investigation and remediation, managed hunting services, rich APIs, and unified security management.

Microsoft Defender for Endpoint (formerly Microsoft Defender ATP) Video

Microsoft Defender for Endpoint

Microsoft Defender for Endpoint (formerly Microsoft Defender ATP) Pricing

More Pricing Information

On-premise Editions Pricing
Pricing DetailsTerms
Standalone$5.20per user/per month
Academic$2.50per user/per month

Microsoft Defender for Endpoint (formerly Microsoft Defender ATP) Technical Details

Deployment TypesOn-premise
Operating SystemsWindows
Mobile ApplicationNo

Frequently Asked Questions

What is Microsoft Defender for Endpoint (formerly Microsoft Defender ATP)?

Microsoft Defender for Endpoint (formerly Microsoft Defender ATP) is a holistic, cloud delivered endpoint security solution that includes risk-based vulnerability management and assessment, attack surface reduction, behavioral based and cloud-powered next generation protection, endpoint detection and response (EDR), automatic investigation and remediation, managed hunting services, rich APIs, and unified security management.

What is Microsoft Defender for Endpoint (formerly Microsoft Defender ATP)'s best feature?

Reviewers rate Centralized Management highest, with a score of 9.8.

Who uses Microsoft Defender for Endpoint (formerly Microsoft Defender ATP)?

The most common users of Microsoft Defender for Endpoint (formerly Microsoft Defender ATP) are from Enterprises and the Information Technology & Services industry.