SOLUTIONS

Managed Detection and Response ➔

Our MDR provides end-to-end attack surface coverage, proactive threat hunting and Incident Response.

Compromise Assessment ➔

Learn what is happening in your network right now, and get full assurance you are not compromised.

SIEM as a Service ➔

Get superior visibility and threat detection with our cloud SIEM/XDR platform, with the full service operational in minutes.

Incident Response ➔

Get expert support through the whole incident response lifecycle.

HOW IT WORKS

XDR Platform ➔

Get deep visibility across endpoint, network, cloud and your digital supply chain.

td_CLOUD ➔

Continuous cloud assurance, configuration and posture management.

td_ENDPOINT ➔

Detect and respond to the most sophisticated endpoint threats.

td_NETWORK➔

Always-on network monitoring for advanced threats and suspicious behaviour.

PARTNERS

SOC for MSP’s ➔

Start providing advanced 24×7 cyber security services to your customers tomorrow.

Become a Partner ➔

Our partner program helps you start immediately and provides full support with technology, customer on-boarding, sales and marketing, as well as personalised training and reporting.

COMPANY

Who We Are ➔

ThreatDefence is the only Australian vendor providing innovative MDR, SOC-as-a-Service, and proactive cyber defence solutions to MSPs and Enterprises.

Careers ➔

We are looking for the best. Join our team, grow quickly, and become part our global success.

News ➔

Learn more from our latest news.

Case Studies ➔

Learn what our customers say about us.

Contact Us ➔

Our cyber security experts are ready to help. Contact us and get your answers today.

ThreatDefence Endpoint

A zero-trust endpoint visibility and threat detection without boundaries.

Our Endpoint solution goes way beyond traditionally managed endpoint protection proposed by other vendors. td_ENDPOINT is a single, lightweight agent that pairs endpoint visibility and threat detection capabilities with our elite threat hunting team, providing great visibility and eliminating blind spots missed by traditional security tools.

Unprecedented visibility across workstations, server, cloud and teleworker endpoints.

Delivered at no additional cost as part of our MDR solution.

Automated deployment.

Security baseline and security configuration monitoring.

Works from anywhere without specialised connectivity requirements.

Maintain a continuous compliance state.

Detection of unknown threats.

Cyber risk and security posture continuous assessment and monitoring.

Endpoint Threat Detection Challenges

Even the most advanced EDR software fails. These days, around 80% of endpoint threats are zero-day and specifically designed to bypass even the most sophisticated endpoint protection and response solutions.

Furthermore, adversaries are increasingly using the living-off-the-land approach when they rely on valid accounts and authorised tools to move across the environment, completely bypassing AV and EDR detections.

How td_ENDPOINT Helps?

td_ENDPOINT is a lightweight agent supplied as a core technology with our XDR (Extended Detection and Response) platform and complemented by our Managed Detection and Response service offerings.

The agent introduces unmatched visibility capabilities and holistic security inventory functionality to enrich security data collected from our sources and help reveal the most evasive actions conducted by the most sophisticated threat actors.

The agent supports our managed detection and response capabilities, collecting critical security data from on-premises, cloud, and mobile endpoints and supplying information across the whole cyber-attack chain, from the initial reconnaissance to the malicious data exfiltration.

  • Deep endpoint visibility, including in-depth asset security data.
  • Support of major operating systems including Windows, Linux, and macOS.
  • Detection of malicious activities based on MITRE ATT&CK framework.
  • It can be deployed on top of any EDR/NGAV, providing another layer of security.
  • Benchmarking of system and application security controls.
  • Digital forensics, incident response and threat hunting capabilities.
  • Built-in user and machine behaviour analytics.
  • Fully integrated with our XDR platform and MDR/SOC services.

How it Works

Our proprietary agent derives critical insights from the endpoints in real-time, analysing vulnerability data, system and process usage telemetry, user behaviour, and many other metrics and indicators. The collected data is correlated with security events retrieved from any other assets in your organisation and supports our threat hunting team to deliver continuous threat detection.

Empowered by the collected data and by our machine-learning technologies, our threat hunters can continuously assess risks, identify any malicious behaviour, and proactively respond to threats before they propagate to the rest of your network.

How td_ENDPOINT Solution Compares to Other Vendors

 

Other Providers

td_Endpoint

Deep visibility into all user and machine actions

Limited

Choose your own EDR

Usually comes with the
provider chosen option

Use our options
or BYO

Proactive threat hunting

Limited

Built-in forensic data collection

Limited

Software supply chain security analytics

Limited

Software supply chain security analytics

Limited

Full Enterprise Attack Surface Coverage

Our Endpoint solution is supplied as an integral part of our XDR platform and can be complemented by our 24×7 SOC/MDR services.

Our XDR platform provides full enterprise coverage, integrating all the security data you can reach into, including data that directly resides within your network and on your endpoints, as well as the external data such as cloud workloads, SaaS applications, Dark Web breaches, compromised credentials, external vulnerabilities, and weaknesses and exposures related to third-party organisations in your supply chain.

ENDPOINT
_ENDPOINT
Advanced endpoint visibility, forensic analysis of endpoint telemetry, detection and response
Network
_NETWORK
Detect insider threat and lateral movement with network-based intrusion detection and packet analysis
CLOUD
_CLOUD
Multi-cloud security insights, cloud workload vulnerability management and continuous risk assessment
OSINT
_OSINT
Continuously integrated Open Source Intelligence, including indicators from Dark Web, Social media, and third-party vulnerabilities
ANYTHING
_ANYTHING
Any standard or custom application or log source, completely integrated into the platform

Protect Your Organisation With ThreatDefence

Get In Touch
Linkedin Twitter
Solutions
How It Works
Partners
Company
  • 1300 122 434
  • team@threatdefence.com
Linkedin Twitter

© 2021 ThreatDefence Pty Ltd All Rights Reserved | Privacy Policy | Terms Of Service