icon

Endpoint security

Anti-malware, built into the Elastic Stack

Elastic Agent stops malware at the host, while enabling centralized visibility and advanced threat detection. It’s free and open, easy to operate, and built for performance.

Download Elastic Agent to protect your endpoints
illustration-security-administration-outline-blue.svg

New

In 7.10, Elastic Security adds a plugin for trusted applications, a richer set of ECS fields, and administrative enhancements.

Secure your endpoints with one click

Elastic Agent protects while it collects. And thanks to the Elastic Stack, that’s just the start.

Malware prevention

Leverage machine learning to block unknown and polymorphic malware and ransomware before execution.

Higher-fidelity alerting

Gain deep data visibility to power detection rules and ML jobs, and minimize false positives at the SIEM.

Faster hunting and response

Add rich endpoint context to accelerate investigations and improve incident resolution efficacy.

Free today, with more value on the way

Get started with free anti-malware in Elastic Security today, and address more endpoint security use cases tomorrow.

Available nowBasic (Free)

Planned featuresLicensing TBD

Signatureless malware prevention

Security data collection

High-fidelity centralized detection

Behavioral ransomware prevention

Memory protection

Advanced on-host prevention

Advanced on-host threat hunting

Response capabilities

Offline operations (beyond malware prevention)

On-host storage for offline use cases

Signatureless malware prevention

Security data collection

High-fidelity centralized detection

Behavioral ransomware prevention

Memory protection

Advanced on-host prevention

Advanced on-host threat hunting

Response capabilities

Offline operations (beyond malware prevention)

On-host storage for offline use cases

Available nowBasic (Free)

Planned featuresLicensing TBD

Proven anti-malware

Unified protection, for everyone

Secure your organization with Elastic Security, featuring integrated anti-malware and deep visibility at the endpoint.

Stop malware

Protect your Windows, macOS, and Linux endpoints. Prevent malware from executing and enable the detection of advanced threats. Powered by the Elastic Security research team and our global community.

Enhance SecOps visibility

Monitor your environment and hunt for threats with kernel-level data collection and purpose-built dashboards. Quickly access contextually relevant information via built-in visualizations.

Detect advanced threats

Activate prebuilt rules to detect advanced threats across all of your endpoints. Spot anomalies with out-of-the-box machine learning jobs. Customize or create content to address threats unique to your industry or environment.

Triage and respond efficiently

Quickly analyze detailed data from across your hosts. Examine host-based activity with interactive visualizations. Integrate response workflows with external orchestration and ticketing tools.

Be ready for your next use case

Quickly tackle new use cases with Elastic Security. Activate new agent capabilities with just one click. Minimize the endpoint footprint with a resource-efficient agent built to handle multiple use cases.

Plus all the goodness of Elastic

Elastic Security provides a universe of capabilities to enrich and extend your use case.