Provides a view into the Threat Intelligence of CrowdStrike by supplying administrators with deeper analysis into Quarantined files, Custom Indicators of Compromise for threats you have encountered, Malware Search, and on-demand Malware Analysis by CrowdStrike.Provides the ability to query known malware for information to help protect your environment.Provides an around-the-clock managed threat hunting and email notification from the Falcon OverWatch team, alerting administrators within moments of an indicator that there is an emerging threat.This allows administrators to view real-time and historical application and asset inventory information. Provides insight into your endpoint environment.Allows for administrators to monitor or manage removable media and files that are written to USB storage.This data provides all the details and context necessary to fully understand what is happening on the endpoint, letting administrators take the appropriate remediation actions. Displays the entire event timeline surrounding detections in the form of a process tree.Records all activities of interest on an endpoint, allowing administrators to quickly detect, investigate, and respond to attacks.All products are enacted on the endpoint by a single agent, commonly known as the CrowdStrike Falcon Sensor.
CrowdStrike contains various product modules that connect to a single SaaS environment.
0 kommentar(er)
