https://store-images.s-microsoft.com/image/apps.47878.434b1047-499b-482b-a44c-8c565b9bc0c6.c594c279-200d-449e-9b52-97f95347595a.9065d01e-6b57-4a24-a75e-96c4c316ef60

Egress Defend Connector for Microsoft Sentinel

Egress

Egress Defend Connector for Microsoft Sentinel

Egress

Egress Defend Connector for Microsoft Sentinel

Egress Defend combines intelligent detection technologies to reduce human activated risk and protect against advanced phishing threats. Emails are inspected using a combination of machine learning, social graph and natural language processing. By learning email behaviour patterns, it detects anomalies that are indicative of sophisticated, payload-less phishing threats that have evaded existing email security solutions.

Microsoft Sentinel is a cloud-native security information and event manager (SIEM) platform that uses built-in AI to help analyze large volumes of data across an enterprise.


The Egress Defend Connector for Microsoft Sentinel allows log information from Egress Defend to be sent to Microsoft Sentinel, enabling organizations to cross-correlate data from multiple sources and enable a holistic view of their security.


Information sent from Egress Defend to Sentinel provides details of processed emails, including the type of phishing attack, payload type and information to show if the user interacted with the email in a positive (clicking on banners or submitting the phish sample) or negative (clicking on an unsafe URL) manner.