After EnCase® Endpoint Security has identified an unknown threat on an endpoint with the EnCase® platform, Threat Grid provides in-depth analysis and correlates the attack-related artifacts with all other known malicious activities to help analysts quickly investigate and determine if malware resides in other parts of the network or if the incident should be closed. The included Google Chrome Extension can be used to search Threat Grid for suspicious processes, IP addresses, registry keys and domains from EnCase® Endpoint Security.
Integrated investigative functions include:
- Search Highlighted IP Address in Threat Grid
- Search Highlighted Domain in Threat Grid
- Search File Hash Value in Threat Grid
If the initial results require further investigation, further analysis can be done using EnCase® Endpoint Investigator.
Download here - https://chrome.google.com/webstore/detail/cisco-amptgumbrella-intel/hieoklflmijjcjmeflpmjcokjcbcgbbm
|Version||Verified Compatible Cisco Product||Date Tested|