Microsoft Defender for Endpoint Reviews

In terms of the installation, ease of use, and user interface, Defender has been great so far.  

I think Microsoft needs to improve some of the security aspects of Defender. 
The email part, in particular, needs to be improved in terms of security effectiveness.

We started using Defender just this year. 

So far, we haven't had any issues, and we're using it for the server right now.

Installing Defender is straightforward. One person from our security team is enough to deploy and manage it. 

It's a yearly subscription.

I will rate Microsoft Defender eight out of 10 for now, but we need to evaluate it more, especially the virus detection, which still isn't proven. I think we need to evaluate it first. 
Yes. I wouldn't recommend it for end-users who already have a more capable antivirus solution. But if someone would like to try in a small environment, we can recommend Defender security.

We primarily use the solution to save our data from getting lost in the case of network attacks or viruses.

The most valuable feature is that we can use the solution right out of the box without too much configuration.

There's scanning going on that occasionally topples the memory, causing everything to freeze. This should be fixed.

In future releases, it would be helpful if they included something that can control any handset viruses.

I've been using the solution for more than two years.

We are using the on-premises deployment solution.

I would rate the solution seven out of ten.

Defender is an antivirus program available at a lower price than other products, like Symantec, McAfee, etc. Recently, Defender has now been integrated with Kaspersky Labs. There are two variants available for this product, Home basic edition and Pro. It has features that all other antivirus programs have like anti-spam, URL syntax checking, Firewall, Anti-spyware, etc. Defender has one surprise feature though called Secret Surf, which leaves no trail of your browsing history. There is feature, like free update of Anti-spyware database, that most other common Anti-virus programs don't provide.

The most problematic part of this program is the difficult customer service. Upgrading the software may cause a little bit of trouble. Your computer may lock down soon after your first reboot. There have also been some problems with the connectivity and with the internet, soon after the installation of the program. Trouble-shooting by Customer Support Engineer may take some time to figure out the problem and fix it. You may find your computer slowing down after installing the program.

Defender Pro or Home Basic antivirus provides some sort of security against the latest internet threats, but going for the reputed Anti-virus software like Symantec Endpoint, Quick Heal, etc. would be a wiser choice. The price of this program may be a bit lower, but safety of you and your computer is of greater importance.

My current use cases for Microsoft Defender for Endpoint include primary Defender MDE, Endpoint Detection Response EDR. I also use it mainly for attack simulator, which is for phishing deployments.

Microsoft Defender for Endpoint has changed significantly for the better. I appreciate that it has MD integrated with it. The cloud app feature is beneficial. The attack surface feature where phishing simulations can be performed is quite neat. I definitely appreciate the vulnerability assessment capability. These are significant key features that I find valuable.

It would be helpful if Microsoft could integrate a sandbox with Microsoft Defender for Endpoint. This is critical and important, especially when conducting phishing attacks since it has a simulator. This is particularly notable as competitor CrowdStrike has a robust sandbox, while Defender does not.

The vulnerability management feature in Microsoft Defender for Endpoint needs enhancement to make it more robust. The naming convention should be changed to M365 Defender instead of just Defender, as there is confusion between Defender, Defender 365, and Defender XDR. This creates uncertainty about whether we're discussing XDR, EDR, or M365 Defender.

The vulnerability management modules could be improved to be more user-friendly and accurate compared to other vulnerability management solutions such as Tenable, Rapid7, and Titanium. Currently, the vulnerability management in Microsoft Defender for Endpoint is not as accurate as the BMS information from Tenable or Rapid7.

I have been using Microsoft Defender for Endpoint for a couple of months now. Prior to this, I used Defender when it was known as ATP for two to three years. Technically, I have been using the solution since 2020.

The solution is pretty stable.

I don't think it's scalable at this moment. It is doing what it's supposed to do, but Microsoft Defender for Endpoint isn't there yet.

I would definitely recommend having professional services from Microsoft help with deploying Microsoft Defender for Endpoint, not a third-party vendor. This is critically important because you want a Microsoft expert who knows the system thoroughly. Vendors often lack knowledge of Microsoft bending, rebranding, and the underlying engine systems that a Microsoft security engineer would possess.

The pricing is pretty decent. We have a unified platform with a dark package and G5 GCC. I am satisfied with it as the company covers the cost.

I am planning to conduct an assessment in July. Based on my experience, I would rate Microsoft Defender for Endpoint an 8 out of 10.