Deployment Model: On-premise
Technology: AMP-Threat Grid and Network Security

After EnCase® Endpoint Security has identified an unknown threat on an endpoint with the EnCase® platform, Threat Grid provides in-depth analysis and correlates the attack-related artifacts with all other known malicious activities to help analysts quickly investigate and determine if malware resides in other parts of the network or if the incident should be closed. The included Google Chrome Extension can be used to search Threat Grid for suspicious processes, IP addresses, registry keys and domains from EnCase® Endpoint Security.



  • Threatgridproductdescimage3

Integrated investigative functions include:

   - Search Highlighted IP Address in Threat Grid

   - Search Highlighted Domain in Threat Grid

   - Search File Hash Value in Threat Grid



If the initial results require further investigation, further analysis can be done using EnCase® Endpoint Investigator.  

Download here - https://chrome.google.com/webstore/detail/cisco-amptgumbrella-intel/hieoklflmijjcjmeflpmjcokjcbcgbbm

Office Facilities
Support Model
Support Coverage Hours
TAC Hotline
TAC Support Alias
TAC URL

Compatibility

Version Verified Compatible Cisco Product Date Tested
v5.14 None N/A