Sift Security for AWS - AMI
Product Overview
With ThreatHunter by Sift Security, you can greatly accelerate security investigations and proactively hunt for threats. Sift Security uniquely leverages graph analytics & machine learning to help you prioritize existing alerts and to identify high quality starting points to hunt for unknown threats. When manual investigation is needed, Sift Security's powerful and intuitive graph visualization makes it easier and faster to determine root cause and the full impact of a threat. And once an investigation has been complete, you can seamlessly take action via Sift Security's API integrations with leading IT & Security Vendors such as ServiceNow (manage incidents), Carbon Black (isolate a host), and more. Furthermore, using Sift Security's customizable detection and analytics, you can automate future detections so the hunt team can move onto new types of threats.
ThreatHunter supports a wide variety of data sources - including network, endpoint, web, application, threat intelligence and more. Sift Security's graph data model is based on the common information model (CIM), which means that if you have data in Splunk in the CIM format, you can easily integrate Splunk with Sift Security to take advantage of Sift Security's advanced analytics and visualization.
To get started, simply navigate to https:// using Chrome Browser and login with the Username "admin" and using the instance ID as the password (e.g. "i-1234567890").
Version
Video
Categories
Operating System
Linux/Unix, CentOS 1704
Delivery Methods