Microsoft Defender Antivirus (formerly known as Windows Defender) is an antivirus software that comes standard with Windows 10 can help protect against viruses, malware and spyware across email, apps, the cloud and web.
Blumira integrates with Microsoft Windows operating systems to provide automated threat detection and actionable response for Windows Defender. Blumira supports the following Microsoft Windows server operating systems:
Blumira provides broad coverage for Windows Servers including collecting logs using NXLog, Command Line Logging, DNS Debugging and Winlogbeat.
You will need to first install and configure NXLog on the windows host using these instructions: https://www.blumira.com/integration/windows-server/
Enable Windows Defender using Microsoft’s instructions: https://docs.microsoft.com/en-us/mem/intune/user-help/turn-on-defender-windows
Try out Blumira’s automated detection & response platform for free and deploy a cloud SIEM in hours.