icon

Endpoint security

Anti-malware, built into the Elastic Stack

Endpoint Security on Elastic Agent stops malware at the host and enables environment-wide visibility and advanced threat detection. It’s free and open, easy to operate, and built for performance.

Download Elastic Agent to protect your endpoints

New

7.11 adds prebuilt machine learning jobs for Endpoint Security, Windows AV registration, customizable pop-ups, and more.

Secure your endpoints with one click

Elastic Agent protects while it collects. And thanks to the Elastic Stack, that’s just the start.

Malware prevention

Leverage machine learning to block unknown and polymorphic malware and ransomware before execution.

Higher-fidelity alerting

Harness deep data visibility to power centralized threat detection and machine learning.

Faster hunting and response

Add rich endpoint context to accelerate investigations and improve incident response.

Free today, with more value on the way

Get started with free anti-malware in Elastic Security.

Available nowBasic (Free)

Planned featuresLicensing TBD

Signatureless malware prevention

Security data collection

High-fidelity centralized detection

Behavioral ransomware prevention

Memory protection

Advanced on-host prevention

Advanced on-host threat hunting

On-host response actions

Offline operations (beyond malware prevention)

On-host storage for offline use cases

Signatureless malware prevention

Security data collection

High-fidelity centralized detection

Behavioral ransomware prevention

Memory protection

Advanced on-host prevention

Advanced on-host threat hunting

On-host response actions

Offline operations (beyond malware prevention)

On-host storage for offline use cases

Available nowBasic (Free)

Planned featuresLicensing TBD

Proven anti-malware

Unified protection, for everyone

Secure your organization with Elastic Security, featuring integrated anti-malware and deep visibility at the endpoint.

Stop malware

Protect your Windows, macOS, and Linux endpoints. Prevent malware execution and enable the detection of advanced threats. Powered by the Elastic Security research team and our global community.

Enhance SecOps visibility

Monitor your environment and hunt for threats with kernel-level data collection and purpose-built dashboards. Quickly access contextually relevant information via built-in visualizations.

Detect advanced threats

Activate prebuilt rules to detect advanced threats across all of your endpoints. Spot anomalies with out-of-the-box machine learning jobs. Customize or create content to address threats unique to your industry or environment.

Triage and respond efficiently

Quickly analyze detailed data from across your hosts. Examine host-based activity with interactive visualizations. Integrate response workflows with external orchestration and ticketing tools.

One solution, multiple use cases

Handle multiple use cases with just one agent and activate new features with a single click. Endpoint Security on Elastic Agent has a small footprint, so you can deploy broadly. And with the power of Elastic Security, you’re always ready for your next use case.

Plus all the goodness of Elastic

Elastic Security provides a universe of capabilities to enrich and extend your use case.