Threat Hunting

Current security analysis tools are set up to monitor and trigger response for known risks. But what about the attack you never saw coming?

FireMon Immediate Insight prepares you to fight against threats known and unknown, proactively hunting for attacks you otherwise might not have seen coming. It analyzes data patterns in real-time, so you can form and test hypotheses and explore off-model risks.

How We Do It

  • Data clustering – automated assembly and attribution of data for disparate, large datasets
  • Integration with external feeds – cross-reference what is happening on the network with external sources such as Autofocus, VirusTotal and DeepSight
  • Open-ended search – ask open-ended questions, rather than base queries, like you would a search engine