From the course: Learning System Center 2016 Endpoint Protection

Unlock this course with a free trial

Join today to access over 22,400 courses taught by industry experts.

Windows Advanced Threat Protection

Windows Advanced Threat Protection

- [Instructor] In this video we'll cover Windows Advanced Threat Protection, otherwise called ATP. Windows Advanced Threat Protection is really specific to Windows 10, and it does work in conjunction with the system's Center Endpoint Protection client. Although it can work with other solutions as well. The idea with Advanced Threat Protection is that data gets collected from Windows 10 devices and gets sent up into the Cloud in Microsoft Azure. The purpose is to detect zero-day attacks. Zero-day attacks are the scary ones because there is no known signature that we can compare against it to stop it from happening. And zero-day also means this is a vulnerability that is being exploited that isn't even known by the vendor of the software. So there's no known signature and often with zero-day attacks we've got Malware actions that can actually occur across multiple machines not just one. So if we're looking at this from an individual machine by machine basis, looking for suspicious…

Contents