by Brian Carrier | Aug 18, 2017 | Blog
When investigating an endpoint you need to look at user activity in addition to malware and system change indicators. Cyber Triage now provides analytics about user login behavior and activity. This makes it easier for incident responders to determine if a user...
by Brian Carrier | Mar 22, 2017 | New Features
Cyber Triage 2.0 has been released with a new user interface and can be used for free (with a reduced feature set). The new UI allows you to make better decisions, and prevents missing evidence by automating the incident response triage workflow and giving more...
by Brian Carrier | Sep 14, 2016 | Blog
The 1.6.1 release of Cyber Triage added a new automated analysis technique to make the life of an incident responder easier and more efficient. The new technique focuses on the programs that were run on the target system. The motivation for analyzing these programs...
by Brian Carrier | Jun 24, 2016 | Blog
Overview Many companies want to improve their incident response capabilities and make them more effecient. Automation is often touted as way to improve the response times, but what does automation (or orchestration) mean in DFIR? Can the entire process be...
by Christa Miller | Feb 18, 2016 | Blog
If your organization’s security posture is maturing beyond prevention and beginning to focus on detection, you may find yourself evaluating a host of new security technologies. Among the most attractive for many organizations are network intrusion detection systems...
