Endpoint Sensor

Understand the source, impact, and spread of advanced threats with endpoint detection and response (EDR)

Key Features

Gain insight into advanced threats

Advanced threats can bypass traditional antivirus security and spread through an enterprise. With Endpoint Sensor you can understand the full impact of detections, including how many users were compromised or which user was “patient zero.”

It adds data enrichment and vendor guidance from Trend Micro™ Smart Protection Network™ to guide users through investigations.

Windows® Mac® AndroidTM iOS new Power Up

Search for indicators of compromise (IOCs)

Easily perform endpoint searches (sweeping) for indicators of attack, such as malware, registry activity, running processes, and more. OpenIOC or YARA files can be used as search criteria as well. And in many cases, searches can be performed on server-based metadata for fast responses.

Windows® Mac® AndroidTM iOS new Power Up

Advanced threat hunting

Organisations want to take a proactive approach to advanced threats. Endpoint Sensor allows advanced threat hunting capabilities to search for indicators of attack (IOA). Attack discovery rules aid investigators with templates for hunting.

Windows® Mac® AndroidTM iOS new Power Up


  • 4 GB minimum, 16 GB recommended.
  • Available disk space: 500 GB minimum, 1 TB recommended
Operating Systems
  • Windows Server 2008 SP2 (32-bit/64-bit)
  • Windows Server 2008 R2 (64-bit)
Microsoft Internet Information Services (IIS) 7
with all of the following role services:
  • Static Content
  • Default Document
  • Directory Browsing
  • HTTP Errors
  • HTTP Redirection
  • ASP
  • CGI
  • ISAPI Extensions
  • ISAPI Filters
  • Request Filtering
  • IIS Management Console
  • PHP version 5.4.38
  • Microsoft SQL Server 2008 Express
  • Microsoft SQL Server 2008 R2 Standard recommended
Web Browsers
  • Microsoft Internet Explorer 9 or later
  • The latest version of Google Chrome
  • The latest version of Mozilla Firefox


  • 512 MB minimum for Windows XP
  • 1 GB minimum for other operating systems
Available Disk Space:
  • 3 GB minimum for Windows XP, Vista, 7, 8, or 8.1
  • 3 GB minimum for Windows Server operating systems
  • Windows Vista Service Pack 1 (32-bit and 64-bit)
  • Windows XP Service Pack 3 (32-bit)
  • Windows 7 (32-bit and 64-bit)
  • Windows 8 (32-bit and 64-bit)
  • Windows 8.1 (32-bit and 64-bit)
  • Windows 10 (32-bit and 64 bit)
  • Windows Server 2003 (32-bit and 64-bit)
  • Windows Server 2003 R2 (32-bit and 64-bit)
  • Windows Server 2008 (32-bit and 64-bit)
  • Windows Server 2008 R2 (64-bit)
  • Windows Server 2012 (32-bit and 64-bit)
  • Windows Server 2012 R2 (64-bit)

Gain visibility

Endpoint Sensor gives you complete visibility into the attack vector, spread, and extent of the impact of advanced threats. Incident response staff can quickly perform impact assessments, determine the root cause of the detection, and take proactive measures to remediate and update security.

Part of a complete detection and response solution

With today’s EDR solutions, organisations have to dedicate skilled staff and time to hunt and respond to threats. We’ve taken a different approach by integrating advanced detection techniques, such as machine learning, behavioral analysis, and application control, into our endpoint protection platform and taking advantage of its automation and remediation capabilities.

This integration gives you complete detection and response with the most automation possible. Protecting beyond the endpoint, the sensor shares threat data with our Trend Micro™ Deep Discovery™ network security, leveraging its advanced threat detection capabilities.

Connected Threat Defense

What customers say


"Trend Micro has given us an extra layer of security against advanced and unknown threats. At the same time, having Trend Micro Deep Discovery and Trend Micro Endpoint Sensor means that we have an analysis tool that gives us a much better understanding of how our security system is being challenged." ...more

Peter Mejlby
Director, Shared Services

More success stories

Read Delacour

success story

Get started with Endpoint Sensor

Protect more

Protect more

Endpoint Sensor is part of Endpoint Security, powered by XGen™ security, a blend of cross-generational threat defence techniques that protect against targeted attacks, advanced threats, and ransomware.


Learn more