Defender for Servers includes Microsoft Defender for Endpoint. Together, they provide comprehensive endpoint detection and response (EDR) capabilities.
When Defender for Endpoint detects a threat, it triggers an alert. The alert is shown in Defender for Cloud. From Defender for Cloud, you can also pivot to the Defender for Endpoint console and perform a detailed investigation to uncover the scope of the attack. When you enable Defender for Servers, you give Defender for Cloud access to the Defender for Endpoint data related to vulnerabilities, installed software, and alerts.
Vulnerability assessment tools
Defender for Servers includes a choice of vulnerability discovery and management tools. From Defender for Cloud’s settings pages, you can choose whether to deploy these tools to your machines. Any discovered vulnerabilities are shown in a security recommendation.
- Microsoft threat and vulnerability management: Discover vulnerabilities and misconfigurations in real time with Defender for Endpoint, without the need for more agents or periodic scans. Threat and vulnerability management prioritizes vulnerabilities based on the threat landscape, sensitive information, and business context.
- Vulnerability scanner powered by Qualys: Qualys is one of the leading tools for real-time identification of vulnerabilities in your hybrid virtual machines. You don’t need a Qualys license or even a Qualys account; everything is handled seamlessly inside Defender for Cloud.
Leave a Reply