Microsoft ATP OverviewResources Applies To: Windows Defender Security Center Overview Windows Defender Advanced Threat Protection is a platform designed to help enterprise networks prevent, detect, investigate, and respond to advanced threats. To help you maximize the effectiveness of the security platform, you can configure individual capabilities that surface in Windows Defender Security Center. EventTracker helps to monitor events from Microsoft ATP. It’s knowledge object and flex reports will help you to detect file less attacks, backdoor drops and virus/malware. EventTracker Knowledge Pack for Microsoft ATPallows you to monitor the following components: - Security– Threat detection. Previous Next Once Microsoft ATP is configured to deliver events to EventTracker Manager; alerts, dashboards and reports can be configured into EventTracker. Some of the Knowledge Packs available in EventTracker are listed below. For more information, please refer Integration Guide. Security Alerts Microsoft ATP- Critical threat detected: This alert is generated when critical threats are detected by Microsoft ATP. Reports Microsoft ATP- Threats detected -This report gives the information about all the threats detected by Microsoft ATP. Scope The configurations detailed in this guide are consistent with EventTracker version 8.x and later, and Microsoft ATP (Windows Defender Security Center). Documentation For more information, please refer the Microsoft ATP Integration guide.