Microsoft Defender Threat Intelligence is a complete threat intelligence platform that enables security professionals to ingest, analyze and act upon massive signal collected from across the internet, processed by security experts and machine learning. It allows users to uncover and understand their organization's external attack surface, including context around vulnerabilities and the tools and systems adversaries use to attack and exploit them.
Microsoft Defender Threat Intelligence Community Edition is a free, lightweight version of Defender TI, offering the same industry-leading threat-hunting experience with limited access to Defender TI data sets. Users can expedite investigations by connecting internal activity, events, and incident indicators of compromise (IOCs) artifacts to external threats, attackers, and threat tooling.
Below is an overview of the Community and Premium user experience. Organizations interested in purchasing Premium licenses may do so from their Microsoft 365 Admin Center or by getting in touch with their Microsoft Commercial Executive (read more). Any user with a Microsoft account (e.g., hotmail.com, onmicrosoft.com) can sign up for a Microsoft Defender TI Community account. Users that sign into the MDTI platform, ti.defender.microsoft.com, will go through Microsoft's standard authentication process to log in.
|
Datasets/Features
|
Community
|
Premium
|
|
30-day Trial
|
N/A
|
Yes
|
|
Analyst Insights
|
No
|
Yes
|
|
Components
|
14 Day History
|
Unlimited
|
|
Cookies
|
No
|
Yes
|
|
CVE Articles
|
Yes
|
Yes
|
|
Defender TI Article Indicators
|
No
|
Yes
|
|
DNS / Reverse DNS
|
14 Day History
|
Yes
|
|
Host Pairs
|
No
|
Yes
|
|
PDNS Resolution
|
14 Day History
|
Unlimited
|
|
Project Limit
|
5
|
Unlimited
|
|
Projects
|
Private
|
Private & Team
|
|
Reputation
|
No
|
Yes
|
|
Services
|
Yes
|
Yes
|
|
SSL Certificates
|
14 Day History
|
Unlimited
|
|
Subdomains
|
Yes
|
Yes
|
|
Trackers
|
14 Day History
|
Unlimited
|
|
WHOIS
|
Yes
|
Yes
|
|
WHOIS History
|
No
|
Yes
|
Defender TI Community puts advanced Microsoft threat intelligence and investigation capabilities in the hands of defenders across the globe, free of charge. By registering, threat hunters and incident responders have instant access to actionable, integrated, and relevant intelligence derived from the trillions of signals collected by Microsoft to become active contributors to defending the internet for all.
Register for Defender TI Community for free today.
