Red Hand Alerter (COMING SOON)
Red Hand Alerter is a real-time threat detection service that continuously monitors network data, alerting you to malicious activity that is invisible to Anti-Viruses and other traditional endpoint security software like EDRs.
Overview
Red Hand Alerter analyzes network traffic to detect a wide range of behaviors commonly associated with malicious hacker techniques. It monitors data from any number of endpoints and generates real-time alerts when suspicious activity is detected. Because it analyzes raw network data, Red Hand Alerter can detect threats that signature-based engines and EDRs - relying on system call analysis - often miss. This makes it an ideal choice for protecting your most valuable assets, even if they already have antivirus or EDR products installed.Leave Your Email Address to Join the Waitlist:
How It Works
The collection of network data is accomplished in one of three ways:
- Installing a light-weight agent on each endpoint you wish to monitor, which continuously pushes data to our server
- Installing an agent on a single server that taps into mirrored traffic from a SPAN Port or Packet Broker, and continuously pushes data to our server
- Providing us access to a folder (e.g. S3 Bucket) containing network data files in PCAP, PCANG or NetFlow formats, which we will continuously pull to our servers
Once data collection is set up, the system immediately begins monitoring your network. Some detections are active right away, while others require a brief learning period to familiarize themselves with traffic patterns.
