I agree, use built-in Defender. Keep in mind, A/V is your last line of defense. Often, if your A/V caught something legit, it's already broken through and entered your local system.
Better to shore up defenses upstream:
-use DNS filtering to block malicious pages from resolving. There are free and paid versions. Quad9 is free and has good malware filtering.
https://www.quad9.net/
-use Ublock Origin web browser extension which has several quality filters built in that not only protect from dangerous sites, but block unwanted ads as well.
-if you're an advanced user, you can build an open source firewall with a spare computer to use as your router. IPFire and pfSense are both really good. pfSense is not as user-friendly as IPFire, but it is more feature-rich. Both have intrusion prevention systems, web proxys, and lots of other filtering options.