deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-06-24 06:43:38 +00:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity
Files
82b21347edbd29a1c04c1eedf6ef60ffefb24e65
windows-itpro-docs/windows/security/threat-protection/windows-defender-atp/overview-attack-surface-reduction.md
Joey Caparas db633ee5e6 update loc
2018-09-06 12:46:10 -07:00

2.7 KiB
Raw Blame History

title, description, keywords, search.product, ms.prod, ms.mktglfcycl, ms.sitesec, ms.pagetype, ms.author, author, ms.localizationpriority, ms.date
title description keywords search.product ms.prod ms.mktglfcycl ms.sitesec ms.pagetype ms.author author ms.localizationpriority ms.date
Overview of attack surface reduction Learn about the attack surface reduction capability in Windows Defender ATP eADQiWindows 10XVcnh w10 deploy library security macapara mjcaparas medium 07/01/2018

Overview of attack surface reduction

Applies to:

  • Windows Defender Advanced Threat Protection (Windows Defender ATP)

Attack surface reduction capabilities in Windows Defender ATP helps protect the devices and applications in your organization from new and emerging threats.

Capability Description
Hardware-based isolation Protects and maintains the integrity of the system as it starts and while it's running, and validates system integrity through local and remote attestation. In addition, container isolation for Microsoft Edge helps protect host operating system from malicious wbsites.
Application control Moves away from the traditional application trust model where all applications are assumed trustworthy by default to one where applications must earn trust in order to run.
Exploit protection Applies exploit mitigation techniques to apps your organization uses, both individually and to all apps. Works with third-party antivirus solutions and Windows Defender Antivirus (Windows Defender AV)
Network protection Extends the malware and social engineering protection offered by Windows Defender SmartScreen in Microsoft Edge to cover network traffic and connectivity on your organization's devices. Requires Windows Defender AV.
Controlled folder access Helps protect files in key system folders from changes made by malicious and suspicious apps, including file-encrypting ransomware malware. Requires Windows Defender AV.
Attack surface reduction reduce the attack surface of your applications with intelligent rules that stop the vectors used by Office-, script- and mail-based malware. Requires Windows Defender AV.
Network firewall Host-based, two-way network traffic filtering that blocks unauthorized network traffic flowing into or out of the local device.