From the course: Microsoft Azure: Security Monitoring and Threat Detection
Join today to access over 24,900 courses taught by industry experts.
Overview of MDE as IDS - Azure Tutorial
From the course: Microsoft Azure: Security Monitoring and Threat Detection
Overview of MDE as IDS
- [Presenter] As earlier mentioned, Microsoft Defender for Endpoint and the Azure Firewall are the two basic Microsoft solutions that can be used as an intrusion detection system. In previous videos, we have discussed about Azure Firewall, and in this video, we want to have an overview of how the Microsoft Defender for Endpoint can serve as an intrusion detection system. So there are some key features of Microsoft Defender for Endpoint that makes the solution an IDS. One of these feature is the behavioral-based threat detection. This uses a machine learning and a behavioral analysis to detect malicious activity on devices even if it doesn't match non-malware signatures in the organization. Secondly, it is the network protection. The MDE has a network protection feature, which includes a firewall and network protection features that can detect and block malicious network traffic just as you configure your IDPS to alert and deny and such as attempts to connect to non-command and control…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
