SentinelOne Core Protection Platform
Endpoint security
NGAV & Behavioral AI Threat Prevention
Protects against ransomware, known and unknown malware, trojans, hacking tools, memory exploits, script misuse, bad macros, and living off the land attacks.
- On-agent Behavioral AI identifies and stops fileless attacks happening within Storylines in real time.
- Autonomous operation. No cloud reliance for always-on protection.
- On-agent Storyline™ tracking builds actionable context in real time.
- On-agent static AI replaces signatures and predicts malicious files.
One-Click Remediation and Recovery
Gets users working again quickly by eliminating tedious re-imaging.
- Autonomous, automatic, and real-time threat response reduces administrative workload—no complicated scripting required.
- Patented One-Click remediation & rollback reverses unauthorized changes and data affected by an attack.
Incident Forensics & Reporting
Easy-to-use incident data shows what happened, when it happened, and who was affected.
- Automatic interpretation maps TTPs to the MITRE ATT&CK framework.
- Data-driven dashboards, built-in reporting, and team workflows with custom annotations, verdict assignment, incident timelines, and attack exploration tailored to your organization.
Deep OS & Interoperability Support
Singularity agents provide support for the major desktop and server OSes.
- Resource efficient agents support physical systems, VDI, and cloud service providers.
- Support for 17 years of Windows releases including EOL versions, macOS’ new “kextless” security model, and 10 major Linux distributions.
- Anti-tamper mechanisms to prevent agent security interruptions.
- Powerful, pinpoint agent interoperability controls to ensure maximum security with system stability.