Anybody has experience with running an EDR (Endpoint protection) on Linux (RHEL v7)? If so, which tool do you use?

SecuritySecurity Strategy & Roadmap
661 viewscircle icon5 Comments
Sort by:
VP of IT in Banking9 months ago

We use Crowdstrike Falcon in Linux servers as EDR. You may have to use an old version of the agent to support that version.

Director of IT10 months ago

We do not run RHEL, but use Crowdstrike EDR on over 1,000 Linux assets. Microsoft has been pushing their EDR but their Linux performance is a question mark. 

1 Reply
no title10 months ago

thank you

CISO in Software10 months ago

ClamAV works well on Linux

Lightbulb on1 circle icon1 Reply
no title10 months ago

thank you

Content you might like

Is anyone going to ICCWS (International Conference on Cyber Warfare and Security)?

Yes53%

No47%

When do you think we'll see more standards introduced for code signing?

Within the next 6 months29%

Within the next 7-12 months54%

Within the next 1-2 years15%

I have no idea1%

View Results

Can someone provide feedback on the Midpoint IGA product from Evolveum? Feedback about the product and engineering would be helpful..

I’ve been digging into ways to strengthen Zero Trust on IBM i systems, especially as more orgs shift toward hybrid cloud. I’m curious, how are others approaching threat detection around shadow AI use and supplier exposure in these environments?

I wanted a point of view on migration from on-prem AD and SCCM to AAD and Intune. Would be great to have a perspective on, - Is there a real need since SCCM is still undersupport from Microsoft? - I understand that we can get rid of onprim AD Infrastructure and move on SaaS, but any other benefits we get by doing this?