Microsoft company about package version availability (Advanced Threat Protection) for the Linux platform. The product is designed for preventive protection, tracking of unpatched vulnerabilities, and detection and elimination of malicious activity in the system. The platform combines an anti-virus package, network intrusion detection system, vulnerability protection mechanism (including 0-day), extended isolation toolkit, additional application control tools, and a system for detecting potentially malicious activity.
First edition includes preventive protection tools and command-line tools for managing the agent, launching a scan (search for malware), managing response to possible threats and setting up EDR (Endpoint Detection and Response, identifying possible attacks through behavior monitoring and activity analysis using machine learning methods) . Declared support for distributions RHEL 7.2+, CentOS Linux 7.2+, Ubuntu 16 LTS and newer, SLES 12+, Debian 9+ and Oracle Linux 7.2.
Source: opennet.ru