I have found the most valuable features of Kaspersky Endpoint Detection and Response Expert to be its ability to tackle the biggest challenges customers face when they have to mitigate any kind of a malware, ransomware attack, or online theft scenarios. The solution utilizes its HIPS, which is the host intrusion prevention system, behavior analytics system, and device control mechanism, making the antivirus capabilities of EDR quite strong. It is able to detect zero-day threats as well as historical or legacy malware, providing protection against current threats in the market and legacy malware.

My opinion on the advanced threat detection algorithms in Kaspersky Endpoint Detection and Response Expert is that the ATP functionality is quite strong because it utilizes the behavioral analytics engine in the backend, which employs machine learning mechanisms to identify any kind of vulnerability or exploit running on the operating system level and the network level. If an attack is about to happen on the endpoint, it is able to protect over the network as well and checks for any illegitimate encryption activities.

The machine learning capability within Kaspersky Endpoint Detection and Response Expert has contributed to improving detection accuracy and reducing false positives in my environment by helping me identify malicious activity and differentiate between any malicious activity on the operating system level and on the network level. I have seen customers with in-house developed applications that have no public signatures available. Once I whitelist a particular application, it intelligently whitelists not only the executable but also all the dependent services required to run that application. Furthermore, Kaspersky Endpoint Detection and Response Expert has successfully blocked network-level attacks on the endpoint. For example, during a recent DoS attack aimed at choking the entire network, Kaspersky detected the attack, isolated the device in a sandbox network, and alerted my SOC team via email for corrective action, thereby proactively helping me detect and protect devices from malicious attacks.

View full review »

The features I have found most valuable in Kaspersky Endpoint Detection and Response Expert are that it is the first line of defense for my organization. It already protects every single file from outbound traffic in my organization, checks every single mail and file by different methods like FTP files and cloud, and avoids any attacks that might impact my organization. It provides dashboards to my SOC team, allowing us to get alerts about any attacks in advance, and currently, we are working to add a new feature called Kaspersky XDR, which is the new release and advanced tool to complete the whole umbrella needed in my organization.

The advanced threat detection algorithms in Kaspersky Endpoint Detection and Response Expert are good, based on predefined scenarios using the built-in AI module. This tool also checks all user behavior, and it includes a machine learning tool that collects expertise related to every single user application. It detects everything based on this data, allowing us to whitelist some paths to avoid interruption of our services, while also analyzing every behavior in our organization.

The machine learning capability within Kaspersky Endpoint Detection and Response Expert is perfect and designed to improve detection accuracy while reducing false positives. It helps validate responses and automates every single action needed, and it also reduces false positive alerts by fine-tuning everything through detected activities while providing advice from expert teams at Kaspersky.

The visibility into endpoint activities from Kaspersky Endpoint Detection and Response Expert is excellent, as it provides alerting tools and dashboards shared with my SOC team. These dashboards give me visibility on multi-events, allowing for troubleshooting and root cause analysis, while also highlighting all risks in our organization and securing all devices effectively. Kaspersky Endpoint Detection and Response Expert will proactively prevent unexpected actions and alert admins to get justifications for any suspicious behavior.

There have been many improvements in Kaspersky Endpoint Detection and Response Expert over the years, and I believe the future releases will continue to enhance its capabilities. Kaspersky's secret algorithms and commitment to security have established it as a reliable solution for our organization, especially compared to other antivirus and EDR solutions.

View full review »

The most valuable features in Kaspersky Endpoint Detection and Response Expert are intrusion prevention, network monitoring, and firewall capabilities.

The analytics capabilities are good, as we have been using it for more than 10 plus years, approximately 15 years.

View full review »

The product reviews of Kaspersky Endpoint Detection and Response Expert are very good. I was looking after that, and then we decided to go for this product. The product is strong enough and capable of handling the type of detections as protection and security. We are using the Endpoint Detection and Response solution, and all the features available in this solution are good enough to be considered a strong product.

The security side I am working in is part of my overall systems experience.

View full review »

The features I appreciate most about this solution are its good response time, speed, and reliability. It detects most antiviruses and identifies viruses that other antivirus solutions don't detect. View full review »

The integration with our hypervisor is quite smooth, especially within the Kaspersky Enterprise environment. We have many virtual machines, and the integration is helpful.

View full review »

The most valuable features for me in Kaspersky are good security and performance. This solution is quite responsive and the tech support engineers are kind and good.

View full review »

The solution's most valuable features are that it offers very strong encryption and acts as an antivirus product. It is one of the few antivirus tools that, once you discover a device remotely, you can install within the portal's central management.

View full review »

Kaspersky is viable with ADR; the Endpoint Detection response feature and the BitLocker management feature are important. 

Additionally, almost all our clients use the Patch Management, vulnerability, and integration feature.

View full review »

The product has an easy-to-use EDR module based on signature-based antivirus detection. It is a complete software.

View full review »

The solution's most valuable feature is machine learning. It monitors the traffic and events to detect suspicious activity.

View full review »

In my company, we do some evaluations, and when opening a document, it's like a sandbox tool that allows one to open and review a document. So, we feel very secure with Kaspersky Endpoint Detection and Response Expert.

View full review »

The detection engine running on endpoints works very well and provides a good protection level. We had several infection attempts but all were captured and blocked by the solution with no ransomware or malware running wild in our network.

The SD engine is very powerful and profound. 

The solution can integrate with external SIM solutions or external SOCs like CrowdStrike or Microsoft Defender.  

View full review »

The solution is very fast.

The EDR is quite helpful.

It is stable. The performance is good.

Overall, it works very well.

It's good for blocking threats.

Technical support is excellent.

It is scalable. 

The pricing is decent.

View full review »

The firewall options are impressive, the solution does a good job of filtering and blocking unusual traffic. It's very easy to use, easy to deploy, and easy to operate. 

View full review »

Encryption is the most valuable feature. It creates an encryption tunnel from your location to the delivery address. It's like a tunnel that can't be broken so that your mail can't be intercepted anywhere along the line. When you're using Barracuda as a gateway, your mail is guaranteed to be delivered as it was sent.

The other nice thing about the solution is that it's an archiver, which most companies need for compliance.

For e-discovery, a lot of legal companies need certain documents and for emails to be kept intact as they were sent. It acts as a paper trail.

View full review »

The most valuable features are the reports.

View full review »

What I like best about Kaspersky Endpoint Detection and Response is that it can detect any cyber attack and that it's a reliable product in the cybersecurity space. My company has confidence in it as a product for detecting all cyber attacks. It's a reliable product.

View full review »

It's just running in the background. It doesn't bother us, and we don't even notice it is there.

It helps improve security in our organization. The protection on offer is good. 

The initial setup is straightforward. 

View full review »

In the software that I use at Kaspersky, we have some options that we made to our client LiDAR for the block patching, and we can close the high chain. 

The endpoint protection can update the patching from this server directly to the client, and every employee. 

The performance for Kaspersky is good, and it's not impacted our client performance.

It offers good blocking capabilities.

The upper patching is excellent.

View full review »

It is easy to manage. 

The initial setup is simple. 

It is stable. 

We have local support available to us.

View full review »

The most valuable features of Kaspersky Endpoint Detection and Response are all the features. The features have all helped us and most recently malware has been an issue in our company and malware protection has been effective. 

View full review »

The most valuable features of Kaspersky Endpoint Detection and Response are the threat detection technologies, and activity monitoring and support tools. Additionally, the port and USB security, and antivirus are effective.

View full review »

The major features I really like are behavior detection and the firmware scanner. The solution also has great threat prevention. Machine learning is also very good as is the real-time protection. The best thing is you can also get a vulnerability report. There are a couple of other features EDR has that are not available in other solutions and that includes the system-level device for controlling the UI which enables control of applications at the location level. There is also the IoC scanner that Symantec doesn't have. Finally, the threat intelligence portal gives me global visibility into threats and their interconnections which is great. 

View full review »

The product is very easy to use. 

The solution is stable and reliable. 

It can scale well. 

View full review »

In terms of effectiveness, it's the best. 

It is easy to set up. 

The product is stable. 

We can scale the solution. 

View full review »

In my opinion Kaspersky is the best product on the market. It's very easy to handle, user-friendly and they provide a lot of features that are difficult to find in other endpoint solutions.  Kaspersky provides great features and endpoint protection. 

View full review »

The most valuable feature of Kaspersky EDR is its simplicity. The console is easy to use and not very complex.

View full review »

We like the automated change of policies, given some scenarios. It is wonderful. You can rely upon your automated policies being activated if you need to. If you are under attack, or maybe some ransomware is spreading across your network, and you want your endpoints to become more secure given that threat, you get good protection. It's maybe the most important feature of Kaspersky Endpoint Detection and Response.

It's easy to set up. 

The solution is scalable.

It's easy to manage and monitor the endpoints. 

View full review »

The most valuable feature of Kaspersky Endpoint Detection and Response is security. It has better security than other solutions, such as Symantec.

View full review »

EDR's most valuable feature is its basic protection from malware and viruses.

View full review »

We enjoy the solution as, when we are online we are secure. It's easy to use and not too heavy. It doesn't slow down any machines at all. 

The product is quite stable.

It's scalable enough for us.

The product is straightforward to set up. 

View full review »

I like the tool’s response to malware and trojans.

View full review »

Version 14.0 comes with an SQL database, which gives great flexibility on control, reviewing logs, and viewing history.

View full review »

The content filtering options are good.

View full review »

The solution provides high-end security that is critical for financial institutions and bankers. 

The interface is intuitive with no issues. 

View full review »

We particularly appreciate how scalable this solution is, as we often need to increase our end-user numbers.

View full review »

I like that Kaspersky provides us with web and DNS protection over https.

View full review »

The most valuable feature is Endpoint's management.

View full review »

Kaspersky Endpoint Detection and Response is an effective protection solution.

View full review »

The simplicity is great

It's a very light product. 

We've found the solution to be stable.

It's scalable and easy to expand.

The installation process is very simple. 

View full review »

The most valuable feature is endpoint protection.

View full review »

In the past year, many banks have seen cases of ATM looting. We wanted to prevent that, which is why we implemented Kaspersky Endpoint Detection and Response. We are a bank and we haven't had any issues like the orders. Kaspersky helped us a lot. It helped up prevent unauthorized USB port usage. 

View full review »

This is a feature-rich product.

View full review »

Kaspersky Endpoint Detection and Response Expert offers centralized monitoring where we can monitor everything from a single point. I also like its security and network traffic features. 

View full review »

Overall, the solution is okay.

We have a central console and from there you can monitor all workstations via an agent. The agent is installed on workstations and servers and after that, the agent can contact the central server from which we can see all of the information. We can see if the antivirus has been updated, if the solution has been detecting anything, or if there are any issues, for example. 

The pricing is very good. It's quite cheap. It might be one of the least expensive. 

View full review »

Kaspersky is easy to use, and it performs well. 

View full review »