Twitter Linked In
 

CrowdStrike

CrowdStrike

is a global provider of security technology and services focused on identifying advanced threats and targeted attacks. Using big-data technologies, CrowdStrike’s next-generation threat protection platform leverages real-time Stateful Execution Inspection (SEI) at the endpoint and Machine Learning in the cloud instead of solely focusing on malware signatures, indicators of compromise, exploits, and vulnerabilities. The CrowdStrike Falcon Platform is a combination of big data technologies and endpoint security driven by advanced threat intelligence. CrowdStrike Falcon enables enterprises to identify unknown malware, detect zero-day threats, pinpoint advanced adversaries and attribution, and prevent damage from targeted attacks in real time.

Training & Events

Sorry there are no training Courses offered by this Supplier.

Falcon Host

Detect Respond Reveal

Falcon Host is an endpoint threat detection and response product that identifies unknown malware, detects zero-day threats, and prevents damage from targeted attacks in real-time. Integrates with existing security architecture and SIEM tools through Falcon Host APIs. No on-premises equipment needed, reducing overall total cost of ownership.

Endpoint Activity Monitoring & Real-time Forensics. CrowdStrike Falcon Host supports Microsoft Windows and Mac workstations and servers

Falcon Host is comprised of two core components, the cloud-based management console and the on-premises host-based sensor that continuously monitors threat activity at the endpoint to prevent damage in real-time.

Detect

  • Detect adversary activity with Stateful Execution Inspection

Respond

  • Real-time response and historic visibility into endpoint activities

Reveal

  • Prioritize response by revealing the context of the attack

CrowdStrike’s next-generation threat protection platform leverages real-time Stateful Execution Inspection (SEI) at the endpoint and Machine Learning in the cloud instead of solely focusing on malware signatures, indicators of compromise, exploits, and vulnerabilities.

Real-time Stateful Execution Inspection


Stateful Execution Inspection (SEI) tracks execution state and links together various stages of the kill chain, from initial code execution to data exfiltration.

CrowdStrike’s Real-time Stateful Execution Engine performs inspection and analysis to understand the full context of a cyber attack. Stateful Execution Inspection (SEI) is critical to understanding the entire attack life cycle and preventing the damage from advanced malware and targeted attacks. Existing security technologies that focus solely on malware signatures, indicators of compromise, exploits, and vulnerabilities fail to protect against the majority of attacks as they are blind to the full scope of adversary activity.


Adversary Behaviors & Effects

  • Code Execution: Arbitrary commands of software executed by the adversary

  • Stealth/Detection Avoidance: Steps taken by an adversary to limit detection

  • Persistence: The ability of the adversary to maintain control of system following a reboot

  • Command Control: In order to receive tasking, the malware generally needs to utilize networks connectivity to provide control to the adversary

  • Lateral Movement: After successfully obtaining access, the adversary will escalate priviliages and move onto other systems

Request a Demonstration



Falcon Host
Name
Organisation
Phone
Email
Enquiry
Verification Code:
 
Contact us
Australia:+61 (0)2 8012 9810
Singapore:+65 9297 1289
Customer Service:
Technical Support:
Training Bookings:
 
Register For the Fulcrum Newsletter HERE

© Fulcrum Management 2012
Name
Email
Organisation
Phone
Verification Code:
Name
Email
Organisation
Phone
Verification Code: