SentinelOne Core Protection Platform

Endpoint security

NGAV & Behavioral AI Threat Prevention

Protects against ransomware, known and unknown malware, trojans, hacking tools, memory exploits, script misuse, bad macros, and living off the land attacks.

  • On-agent Behavioral AI identifies and stops fileless attacks happening within Storylines in real time.
  • Autonomous operation. No cloud reliance for always-on protection.
  • On-agent Storyline™ tracking builds actionable context in real time.
  • On-agent static AI replaces signatures and predicts malicious files.

One-Click Remediation and Recovery

Gets users working again quickly by eliminating tedious re-imaging.

  • Autonomous, automatic, and real-time threat response reduces administrative workload—no complicated scripting required.
  • Patented One-Click remediation & rollback reverses unauthorized changes and data affected by an attack.

Incident Forensics & Reporting

Easy-to-use incident data shows what happened, when it happened, and who was affected.

  • Automatic interpretation maps TTPs to the MITRE ATT&CK framework.
  • Data-driven dashboards, built-in reporting, and team workflows with custom annotations, verdict assignment, incident timelines, and attack exploration tailored to your organization.

Deep OS & Interoperability Support

Singularity agents provide support for the major desktop and server OSes.

  • Resource efficient agents support physical systems, VDI, and cloud service providers.
  • Support for 17 years of Windows releases including EOL versions, macOS’ new “kextless” security model, and 10 major Linux distributions.
  • Anti-tamper mechanisms to prevent agent security interruptions.
  • Powerful, pinpoint agent interoperability controls to ensure maximum security with system stability.