You can add IPS to port to add some security checking, but yes, in general port is never secure or unsecure.

I have been using Windows for 30 years and Linux for 25 years (debian since 99’). I really would not bash (pun intended) windows users so much, there is place for both of them.

Coral Acceletor is only needed if you run setup that does not have GPU or enough CPU. Spare laptop usually has enough power to handle AI detection, but RasPi doesn’t. I run mine in CPU at rack server.

Cameras own detections are limited in my experience, and it is much harder to integrate to anything else, like HomeAssistant for notification & automation

HomeAssistant + Frigate combo is just plain awesome. You can leverage the automations of HA through Frigate’s AI detection, so you get things like notifications.

CrowdStrike Falcon is XDR product, there is hundreds of similar products available.

The role of XDR is to detect and block if some bad actor is trying to do something malicious in the machine. Old school virus signature detection is not enough anymore, you need pattern detection from network communication/DNS queries etc.

When corporation has thousands of devices to monitor the OS each of those devices Is not relevant. You need to detect if some random user logs to some Linux info display thousand kilometers away, and starts scanning the network.

Because the detection and response, needs to happen near realtime, for example Incase of cryptolockers, where all devices are encrypted within seconds, the software blocking this needs kernel level access.

I work in critical infrastructure as IT, but luckily we did not use falcon