Partners & Integrations

INtegration

Security Workflows for Microsoft Defender for Endpoints

When EDR and XDR tools raise alerts, you can use automated workflows in Blink to quickly gather info on IOCs, quarantine devices, and notify the relevant team members.

Automating Microsoft Defender for Endpoints Workflows with Blink

Blink supports 10 out-of-the-box actions for Microsoft Defender for Endpoints so it’s easy to respond to malware alerts with smart, automated workflows.

Microsoft Defender for Endpoints helps organizations protect devices by monitoring for viruses and malware. With automated workflows in Blink, security teams can streamline their process for investigating and responding to these emerging threats. When isolating devices and aggregating information about IOCs is seamless, security teams can mitigate organizational risk fast.

Blink Workflow: On a New Alert from Microsoft Defender for Endpoints, Create a ServiceNow Ticket, and Isolate the Device

Blink Copilot: Search IOCs Across Devices with Microsoft Defender for Endpoints

Blink Copilot: Search IOCs Across Devices with Microsoft Defender for Endpoints

Automated Workflows for
Microsoft Defender for Endpoints

In the Blink library, we have compiled 8,000 automations that customers can download and run instantly. These automations include workflows for cloud security, compliance, identity & access management, network security, SOC & incident response, and threat hunting.

Use Cases

Threat Intelligence & Response

Threat Intelligence & Response

Get File from Machine with Microsoft Defender for Endpoints and Send Results via Email

Get Machine with Microsoft Defender for Endpoints and Send Results via Email

Isolate Machine with Microsoft Defender for Endpoints and Send Results via Email

List Alerts with Microsoft Defender for Endpoints and Send Results via Email

Put File on Machine with Microsoft Defender for Endpoints and Send Results via Email

incident.io

Have I Been Pwned

Microsoft Sentinel

OPSWAT

Zero Networks

Whois

URLScan

Uptycs

UKG HR

Trellix Email Security

Smartsheet

Securin

Sage HR

SafeBase

Power BI

PhishLabs

Pentera

Palo Alto Cloud NGFW

Obsidian

Nightfall AI

NetBox

Lacework

Kenna Security

Jira Data Center

Intezer

GYTPOL

Falcon LogScale

Egnyte

Delinea

ClickHouse

Checkmarx

Censys

Bitdefender

Azure Data Explorer

Axonius

Atlassian User Provisioning

ANY.RUN

Alert Logic

Airlock

Asset Panda

ADP

AbuseIPDB

Abnormal

YesWeHack

Tenable

Rapid7

Qualys

QRadar

OWASP ZAP

Nuclei

Ivanti RiskSense

Falcon Surface

Black Kite

Zoom

WhatsApp

Trello

Telegram

SolarWinds Service Desk

Slack

ServiceNow

Monday

Microsoft Teams

Microsoft Outlook

ManageEngine ServiceDesk Plus

Linear

Jira

Google Chat

Gmail

Freshservice

Exchange Online

Discord

Azure DevOps

Asana

VirusTotal

Tanium

Symantec EDR

Sophos

SentinelOne

Proofpoint

Perception Point

Microsoft Intune

Microsoft Defender for Endpoints

Microsoft Defender for Cloud Apps

Microsoft Defender for Cloud

Joe Sandbox

Ironscales

Hybrid Analysis

CrowdStrike

Cortex XDR

Check Point Harmony

Automox

Apex One by Trend Micro

Sumo Logic

Splunk

Panther

FortiGate

Exabeam

BigPanda

Recorded Future

Connect to anything

Blink offers thousands of pre-built integrations across leading security vendors so you can start automating instantly.

Explore Integrations

Blink integrations - logos in a grid