What is Cyber Triage?
Cyber Triage is an automated incident response solution that empowers organizations to swiftly investigate their endpoints. It automates the entire forensics process, from collecting relevant data to analyzing it for malware and suspicious activity. As cyber threats continue to evolve, manual incident response can be inconsistent and incomplete. Cyber Triage addresses this challenge by leveraging state-of-the-art automation to ensure rapid remediation
Highlights
- Automated data collection and analysis: Cyber Triage can push the collection tool over the network to gather relevant data from endpoints and analyze it for malware and suspicious activity
- Comprehensive incident management: The platform enables teams to manage manual collection triggers, collect a variety of volatile data, and monitor user activity, all within a web-based interface
- Advanced forensic capabilities: Features include memory image analysis, threat timeline, Yara rules, malware detection, and JSON reporting
- Collaborative incident response: The Team version allows multiple users to work on the same incidents, share results, prioritize artifacts, and query for indicators and artifacts from other enterprise tools via REST API.