Seculert Sense
The only malware detection and forensics solution that finds attacks on your organization by analyzing your organization's log files in a secure 'big data' cloud and using a variety of methodologies, including unique information collected from live botnets.
Malware Detection Meets Big Data
To address the unique challenges of Advanced Persistent Threats (APTs), Seculert Sense uses an elastic 'big data' analysis cloud (Amazon Elastic MapReduce). This allows it to rapidly analyze vast amounts of your entire organization's log data, going back months or even years, against thousands of unique malware samples collected every day.
Multiple Malware Detection Methodologies
To detect suspicious and malicious activity in your Internet traffic logs, Seculert Sense applies a wide variety of methodologies, such as live botnets, malicious traffic correlation, domain/IP reputation, DGA detection (domain generation algorithm) and more.
Crowdsourcing
Because it runs in the cloud and uses 'big data' analytics, whenever Seculert Sense identifies malicious activity in any given log source, it will automatically be able to detect similar activities in other sources, even if the logs originate from different vendor products. This enables discovery of targeted attacks across distributed enterprise environments, or even across multiple organizations and industries.
Complements Existing Security Solutions
Seculert Sense complements existing security solutions you may have. You can upload log files from existing secure web gateway or proxy solutions (such as Bluecoat, Squid, and more) and Seculert Sense will automatically identify previously undetected malware attacks. You can then easily integrate the information back to your
on-premise solutions using our RESTful API.
on-premise solutions using our RESTful API.
Deep Visibility
and Analysis
and Analysis
Users can see a wealth of forensics information about the detected attacks in reports available in the Seculert web dashboard. This includes the ability to see all information related to the malware activity, and all URLs involved in delivery or phone-home of the malware.
