cyber-triage-logo

cyber triage

New Features

It’s About Time(lines)!

Using timestamps to determine what happened before or after an event is vital when investigating your endpoints. Timestamps allow you to see what programs were run or websites visited that may have been involved in a suspicious event. The latest Cyber Triage 2.3.0 release includes a new timeline feature that makes this type of investigation easier.

Read More
Integrations

Volatility integration in Cyber Triage to Analyze Memory

Sometimes the only evidence on an intrusion is in memory...

Read More
Integrations

Phantom Integration Allows for Faster Responses

The Cyber Triage team likes to build stuff around themes...

Read More
New Features

More Changes To Make Your Response Faster

Time is critical during incident response. Every minute you have...

Read More
Editorial

Analytics Make User Account Investigations Easier

When investigating an endpoint you need to look at user...

Read More
New Features

Cyber Triage Has a New Look

Cyber Triage 2.0 has been released with a new user...

Read More
New Features

Exposing More Data to Save Time

The new Cyber Triage release allows you to better understand...

Read More
Training

Finding Suspicious Program Activity

The 1.6.1 release of Cyber Triage added a new automated...

Read More
Training

Tailoring the Triage Process for Better Results

An incident first response is only as good as the...

Read More
Editorial

Prioritizing Endpoints Helps to Focus Incident Response

As part of a responding flyaway team, it’s probably common...

Read More
Training

Understanding Your Client’s “Normal”

Detecting an incident means one of two things. You have...

Read More
Editorial

Can Security Infrastructure Work for Fly-Away Incident Responders?

Third-party incident response consultants face unique challenges when helping a...

Read More