Network Detection and Response (NDR)

NDR provides the most effective network security capabilities with high-fidelity
detection on sophisticated attacks and automated response with a low false positive
rate of less than 0.03% and a high zero-day detection rate of over 81%

Why NDR?

Risk Prevention

  • Comprehensive Visibility: Get real-time visibility into the network, including ports, services, applications and domains.

  • Attack Surface Reduction: Identify critical risks across newly launched applications, public entries, login portals, cloud services and APIs.

  • Customisable Asset Risk Monitoring: Achieve flexible and centralised risk management based on the specific needs of the SecOps teams.

Accurate Detection

  • Zero-Day Threats Detection: Accurately detect generic zero-day exploits as well as file-based zero-day vulnerabilities.

  • Compromised Host Detection: Accurately identify compromised hosts by uniting rule based analytics with high-fidelity IOC intelligence.

  • Alert Noise Reduction:Reveal the most critical threats with powerful analytics of in-progress attacks.

Real-Time Analysis

  • Attack Path Analysis: Aggregate events in a timeline intelligently to clearly sort out hacker attack paths.

  • Multidimensional Analysis: Conduct a comprehensive analysis of threats from the attacker’s and defender’s perspectives.

  • Attacker Profiling: Analyse and extract patterns of attack behaviour automatically to build attacker profiles.

Automated Response

  • TCP Reset Blocking: Realise high TCP reset blocking rate by using the TCP session mechanism.

  • Firewall Blocking: Integrate seamlessly with the firewall, and configure the firewall blocking policy through TDP in real-time.

TALK TO A SPECIALIST

1
keyboard_arrow_leftPrevious
Nextkeyboard_arrow_right
FormCraft - WordPress form builder