cyber triage

New Features

It’s About Time(lines)!

July 28, 2018

Using timestamps to determine what happened before or after an event is vital when investigating your endpoints. Timestamps allow you to see what programs were run or websites visited that may have been involved in a suspicious event. The latest Cyber Triage 2.3.0 release includes a new timeline feature that makes this type of investigation easier.

Integrations

Volatility integration in Cyber Triage to Analyze Memory

May 4, 2018

Sometimes the only evidence on an intrusion is in memory...

Integrations

Phantom Integration Allows for Faster Responses

December 14, 2017

The Cyber Triage team likes to build stuff around themes...

New Features

More Changes To Make Your Response Faster

October 30, 2017

Time is critical during incident response. Every minute you have...

Editorial

Analytics Make User Account Investigations Easier

August 18, 2017

When investigating an endpoint you need to look at user...

New Features

Cyber Triage Has a New Look

March 23, 2017

Cyber Triage 2.0 has been released with a new user...

New Features

Exposing More Data to Save Time

December 15, 2016

The new Cyber Triage release allows you to better understand...

Training

Finding Suspicious Program Activity

September 14, 2016

The 1.6.1 release of Cyber Triage added a new automated...

Training

Tailoring the Triage Process for Better Results

January 27, 2016

An incident first response is only as good as the...

Editorial

Prioritizing Endpoints Helps to Focus Incident Response

November 19, 2015

As part of a responding flyaway team, it’s probably common...

Training

Understanding Your Client’s “Normal”

November 12, 2015

Detecting an incident means one of two things. You have...

Editorial

Can Security Infrastructure Work for Fly-Away Incident Responders?

November 5, 2015

Third-party incident response consultants face unique challenges when helping a...