Intel Threat Detection Technology

Intel Threat Detection Technology (TDT) is a CPU-level technology created by Intel in 2018 to enable host endpoint protections to use a CPU's low-level access to detect threats to a system. TDT consists of multiple components including Accelerated Memory Scanning, which uses the CPU's integrated GPU to scan memory, and Advanced Platform Telemetry, which uses processor-level activity monitoring to detect unusual activity.^[1]^[2]^[3]^[4]^[5] It is supported on sixth-generation or newer Intel Core CPUs and additional capabilities were added to the 11th generation Core processors.^[6]^[7]^[8]^[9]

Intel TDT is integrated into several third-party anti-malware solutions including Microsoft Defender,^[10] Check Point Harmony Endpoint,^[11] CrowdStrike Falcon,^[6] and others.^[12]

^ Cite error: The named reference Arstechnica Intel, Microsoft to use GPU to scan memory for malware was invoked but never defined (see the help page).
^ Cite error: The named reference Intel Threat Detection Technology Demo was invoked but never defined (see the help page).
^ Cite error: The named reference anandtech_2018 was invoked but never defined (see the help page).
^ Cite error: The named reference The Register Intel's security light bulb moment was invoked but never defined (see the help page).
^ Cite error: The named reference The Hacker News Intel Processors Now Allows Antivirus to Use Built-in GPUs for Malware Scanning was invoked but never defined (see the help page).
^ ^a ^b Cite error: The named reference CrowdStrike Falcon Enhances Fileless Attack Detection with Intel Accelerated Memory Scanning Feature was invoked but never defined (see the help page).
^ Cite error: The named reference Hardware acceleration and Microsoft Defender Antivirus was invoked but never defined (see the help page).
^ Cite error: The named reference Bleeping Computer, Intel adds hardware-based ransomware detection to 11th gen CPUs was invoked but never defined (see the help page).
^ Cite error: The named reference Intel TDT Developer Guide was invoked but never defined (see the help page).
^ Cite error: The named reference Microsoft Defender Intel TDT Ransomware was invoked but never defined (see the help page).
^ Cite error: The named reference Check Point Software Technologies Enhances Endpoint Security with Intel vPro Platform was invoked but never defined (see the help page).
^ Cite error: The named reference Eset Future-proofing PC fleets with the powerful pairing of Intel Threat Detection Technology and AI-Native endpoint protection was invoked but never defined (see the help page).

[Arstechnica_Intel,_Microsoft_to_use_GPU_to_scan_memory_for_malware-1] Cite error: The named reference Arstechnica Intel, Microsoft to use GPU to scan memory for malware was invoked but never defined (see the help page).

[Intel_Threat_Detection_Technology_Demo-2] Cite error: The named reference Intel Threat Detection Technology Demo was invoked but never defined (see the help page).

[anandtech_2018-3] Cite error: The named reference anandtech_2018 was invoked but never defined (see the help page).

[The_Register_Intel's_security_light_bulb_moment-4] Cite error: The named reference The Register Intel's security light bulb moment was invoked but never defined (see the help page).

[The_Hacker_News_Intel_Processors_Now_Allows_Antivirus_to_Use_Built-in_GPUs_for_Malware_Scanning-5] Cite error: The named reference The Hacker News Intel Processors Now Allows Antivirus to Use Built-in GPUs for Malware Scanning was invoked but never defined (see the help page).

[CrowdStrike_Falcon_Enhances_Fileless_Attack_Detection_with_Intel_Accelerated_Memory_Scanning_Feature-6] Cite error: The named reference CrowdStrike Falcon Enhances Fileless Attack Detection with Intel Accelerated Memory Scanning Feature was invoked but never defined (see the help page).

[Hardware_acceleration_and_Microsoft_Defender_Antivirus-7] Cite error: The named reference Hardware acceleration and Microsoft Defender Antivirus was invoked but never defined (see the help page).

[Bleeping_Computer,_Intel_adds_hardware-based_ransomware_detection_to_11th_gen_CPUs-8] Cite error: The named reference Bleeping Computer, Intel adds hardware-based ransomware detection to 11th gen CPUs was invoked but never defined (see the help page).

[Intel_TDT_Developer_Guide-9] Cite error: The named reference Intel TDT Developer Guide was invoked but never defined (see the help page).

[Microsoft_Defender_Intel_TDT_Ransomware-10] Cite error: The named reference Microsoft Defender Intel TDT Ransomware was invoked but never defined (see the help page).

[Check_Point_Software_Technologies_Enhances_Endpoint_Security_with_Intel_vPro_Platform-11] Cite error: The named reference Check Point Software Technologies Enhances Endpoint Security with Intel vPro Platform was invoked but never defined (see the help page).

[Eset_Future-proofing_PC_fleets_with_the_powerful_pairing_of_Intel_Threat_Detection_Technology_and_AI-Native_endpoint_protection-12] Cite error: The named reference Eset Future-proofing PC fleets with the powerful pairing of Intel Threat Detection Technology and AI-Native endpoint protection was invoked but never defined (see the help page).

[1]

[2]

[3]

[4]

[5]

[6]

[7]

[8]

[9]

[10]

[11]

[12]