Windows Defender Advanced Threat Protection

GPTKB entity

Statements (55)
Predicate Object
gptkbp:instanceOf endpoint security platform
gptkbp:cloudBased true
gptkbp:developedBy gptkb:Microsoft
gptkbp:feature API access
sandboxing
compliance reporting
incident response
role-based access control
forensic investigation
threat intelligence
attack surface reduction
cloud-delivered protection
real-time protection
centralized management
vulnerability management
endpoint detection and response
endpoint isolation
security score
threat analytics
automated investigation and remediation
threat and vulnerability management
integration with SIEM tools
customizable alerts
behavioral monitoring
integration with Microsoft Intune
integration with Azure Security Center
integration with Microsoft Graph Security API
machine learning-based detection
alert prioritization
integration with Azure Sentinel
integration with Microsoft Cloud App Security
integration with Microsoft Endpoint Manager
integration with Microsoft Threat Experts
integration with Office 365 ATP
integration with third-party security solutions
https://www.w3.org/2000/01/rdf-schema#label Windows Defender Advanced Threat Protection
gptkbp:integratesWith gptkb:Microsoft_365_Defender
gptkbp:introducedIn 2016
gptkbp:partOf gptkb:Microsoft_Defender
gptkbp:platform gptkb:Windows
gptkbp:provides gptkb:investigation
threat detection
response capabilities
gptkbp:renamed gptkb:Microsoft_Defender_for_Endpoint
gptkbp:supports gptkb:Android
gptkb:iOS
gptkb:macOS
gptkb:Linux
gptkb:Windows_10
gptkb:Windows_11
gptkb:Windows_Server
gptkbp:targetUser gptkb:business
gptkbp:bfsParent gptkb:Improved_Windows_Defender
gptkb:Windows_Server_2019
gptkbp:bfsLayer 6