BASIS TECHNOLOGY Cyber Triage




Pret

 

 

 

BASIS TECHNOLOGY Cyber Triage

BASIS TECHNOLOGY Cyber Triage is an Incident Response software that automates the entire endpoint investigation cycle.

 

Cyber Triage Features :

  • Collect complete evidence - Cyber Triage's targeted collection approach saves time because it copies the most important data from the system in one step and does not require the user to make a forensic image of the entire drive.
    • Cyber Triage Team directly integrates into leading SOARs and SIEMs for automated collection
    • Incident responders can manually start a network-based collection
    • The collection tool can be emailed to clients and remote offices and run from a USB drive.
  • Find threats fast - After collection, Cyber Triage automatically looks for data that is anomalous and similar to past incidents. Each collected item is assigned a score based on its risk. Bad and suspicious items are prioritized and shown to the user.
  • Dig deeper - After reviewing the data, users can dig deeper for more context and get to root cause. Cyber Triage recommends related files, provides timelines to find other suspicious items, and makes it easy to pivot between artifacts.
  • Collaborate easily - Everything works together with Cyber Triage. Multiple investigators can work on the same investigation at the same time. JSON or CSV reports are easy to generate and import into other systems. (It's also simple to create beautiful HTML reports for management). And, once the investigation is done, Cyber Triage uses the results to improve future analyses.
  • Centralized Log Management - InsightIDR correlates the millions of daily events in your environment directly to the users and assets behind them to highlight risk across your organization and prioritize where to search. And our cloud-based architecture behind the Rapid7 Insight platform delivers a smooth search across your logs and automates compliance without worrying about racks of hardware
  • Visual Investigation Timeline - If you're like the 62% of organizations that report getting more alerts than they can investigate, then you're likely all too familiar with piecing together user activity, gathering endpoint data, and validating known good behavior just to uncover yet another false positive. InsightIDR unites log search, user behavior, and endpoint data in a single timeline to help you make smarter, faster decisions. How much faster? Customers report accelerating their investigations by as much as 20x.

Available in 2 editions:

  • Cyber Triage Standard
  • Cyber Triage Teams

For details, please contact us .