ClearSkies™ Endpoint Detection & Response (EDR) Version 6.4

Overview

ClearSkies™ EDR Agent ν6.4 is α comprehensive Endpoint Detection & Response solution, fully integrated with ClearSkies™ Cloud SIEM. Ιt complements the detection of and response to never­before-seen targeted attacks and insider threats with the use of Behavioral Monitoring and Analysis (ΒΜΑ), and by leveraging Advanced Security Analytics complemented by Threat lntelligence and signature-based detection.

New Features

System Tray (Desktop interface)

To help users keep track of their endpoints’ performance and availability, as well as to help with conclusive incident investigations, the “Activity” panel now features the new “Performance” tab, which displays performance metrics (CPU, memory) of the all Windows services related to the ClearSkies񥤪™ Endpoint Detection & Response (EDR) Agent. The metrics are taken from averages of 1-minute intervals, and display 24-hour and 1-hour historical charts.

Active Defense Beacon Traps

In conjunction with ClearSkies™ Active Defense, the ClearSkies™ Endpoint Detection & Response (EDR) Agent monitors file system activity of users and applications on beacon traps in an effort to spot suspicious/malicious behavior.

ClearSkies™ Active Defense ‘Beacon Traps’ use fake information and “poisoned data” as bait to lure threat-actors. This information consists of different file formats and is placed strategically amongst real information to aid in the early detection of suspicious activities related to unauthorized use and/or access.

Fake information may have the form of email accounts, user credentials, financial spreadsheets and document files related to intellectual property or any other valuable information.

Any attempt to copy, access, modify or use this information by threat actors automatically triggers an Alert/Incident, while a similar action involving “real” information/data would have gone unnoticed, allowing the attacker to continue their silent perpetration through the organizational infrastructure.

Version
6.4

Continue Exploring

Mobile App

April 23, 2021
ClearSkies™ Mobile App allows you to timely assign incidents to your team members and review the investigation progress of outstanding ones, directly from your device while on the go. Get live Threat Alert notifications…
+ Read More

Active Defense

April 19, 2021
ClearSkies™ Active Defense is α new product that offered via the ClearSkies™ Big Data Advanced Analytics Platform and is based on Deception technology principals. Deception technology is an emerging post-breach detection…
+ Read More

SIEM

April 19, 2021
In keeping with our principle “to fulfil our clients’ needs and exceed their expectations”, we are continuously revamping our platform with new innovative features and enhancements. Such features and enhancements are tes…
+ Read More
Demo request

See it in action!

Request a live demo from our representatives to experience the value of ClearSkies™.

talk-to-an-expert-3

One moment, before you go! Don’t miss our free webinar...

Hunting the Attackers, not the Attacks

Active Defense: post-breach detection technology

Attend to get valuable insights on how to minimize the impact of a data breach.