Platform Overview

Welcome to the End Defend Enterprise Knowledge Base. End Defend is an agentless, zero-touch Shadow IT Discovery and SaaS Risk Intelligence platform designed for modern security teams. This directory provides comprehensive documentation on deploying, configuring, and leveraging our core governance modules.

1. Shadow IT Discovery & Visibility

The core of End Defend is continuous visibility. The platform automatically intercepts and classifies web traffic across your infrastructure without requiring intrusive SSL decryption or kernel-level keystroke logging.

• App Categorization: Automatically tags discovered applications into categories (e.g., Productivity, File Sharing, AI, Risky Domains).
• Departmental Heatmaps: Visually track unsanctioned application usage grouped by specific departments or user cohorts.
• Real-time Dashboard: The primary admin dashboard provides an immediate, top-down view of total active endpoints and unmanaged SaaS applications.

2. Advanced AI Governance

With the proliferation of unauthorized Large Language Models (LLMs), End Defend provides specialized telemetry to detect and intercept data leakage into AI platforms.

• LLM Detection: Identifies unapproved ChatGPT clones and specialized AI tools operating outside of corporate compliance.
• Risk Scoring: Assigns dynamic risk scores to AI domains based on their data retention policies and historical breach data.

3. Corporate Policy Engine

Administrators can enforce dynamic web routing and access policies instantly across the entire tenant network.

• Global Blocklisting & Allowlisting: Create universal rules to block known malicious or non-compliant URLs (e.g., stopping access to unverified file-sharing sites).
• Targeted Interventions: Apply rules specific to individual users or entire departments.
• Employee UI Prompts: Rather than silently blocking access, End Defend handles block events smoothly, presenting the employee with an acceptable use policy reminder.

4. Endpoint & UEBA Monitoring

While maintaining a privacy-first posture, End Defend provides vital endpoint analytics to enforce remote-work compliance and security boundaries.

• Attendance & Uptime Logs: Track aggregate session times and system uptimes for remote fleets.
• Contextual Screenshots (Optional): Granular, policy-triggered screen captures for critical compliance and data-loss investigations.
• Lightweight Agentless Deployment: Operates silently in the background with near-zero CPU/Memory impact.

5. Tenant & Quota Management

Designed for enterprise scalability, Company Admins can self-manage their deployments through secure, restricted workflows.

• Resource Quotas: Endpoint deployments are strictly governed by active License Plans (e.g., Free Tier: 10 Endpoints, Pro Tier: 50+ Endpoints).
• Upgrade Approvals: Plan upgrades natively generate automated Request Tickets sent directly to the Super Admin engineering team for provisioning review.