This scheduled lab provides a safe environment to evaluate the functionality of CyFIR Enterprise on various Windows and Linux endpoints. This is the best starting point for understanding the Forensic Analysis and Instant Response solution and how it can provide the value of cyber resiliency to your organization.
This lab demonstrates how CyFIR Enterprise uses:
- Endpoint inspection and “in memory” data evaluation to detect malicious activity.
- Concurrent IoCs and “Malicious Footprint” scans across enterprise to reduce breach scope.
- End-user monitoring for authentication and the user process level interactions.
- Forensic acquisition (eDiscovery) of cyber evidence both on disk and running “in memory” to court standards.
- Silent remote agent install/uninstall.
- Remote forensic analysis and endpoint response.
- “Intellectual Property” and data exfiltration search across enterprise.