Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Best Incident Response platform I've worked with...
What do you like best about the product?
The excellent incident response capabilities. I’ve never seen anything like it – the ability to investigate and remediate threats in literally minutes.
What do you dislike about the product?
Nothing I can think of – it’s really fantastic.
What problems is the product solving and how is that benefiting you?
Our customers are large Enterprises that have SOC teams or incident response teams that need to deal with overwhelming amounts of alerts generated from prevention and detection systems they have. They use Secdo to validate and investigate the alerts automatically, and once a real threat has been found – they use Secdo to remediate the alerts surgically. With Secdo they are able to deal with all alerts and reduce time for investigation from days to minutes.
Recommendations to others considering the product:
If you deal with a lot of security alerts and don’t have the manpower to investigate all of them – Secdo is the tool for you. It also has amazing remediation capabilities – all from one place without the need to install additional tools on the endpoint.
- Leave a Comment |
- Mark review as helpful
SECDO to the rescue
What do you like best about the product?
Blocking Ransomware for real!
Enables investigation on hosts over time without the need of expensive forensics products nor system experts.
Enables investigation on hosts over time without the need of expensive forensics products nor system experts.
What do you dislike about the product?
we needed response tools (isolating host and run commands remotely) but SECDO solution now included them.
What problems is the product solving and how is that benefiting you?
Ransomware blocking
We now can search for same evidences cross company in minutes.
We now can search for same evidences cross company in minutes.
Recommendations to others considering the product:
Make sure you have strong bi-directional communication with your SIEM (most important for handling alerts and automation of alerts on workstations.
Hunting & Investigating by SECDO gives the ability to disassemble any attack to its parts
What do you like best about the product?
visibility
effectiveness
low fingerprint
easy to use
false positive reduction
root cause analysis
effectiveness
low fingerprint
easy to use
false positive reduction
root cause analysis
What do you dislike about the product?
Endpoint Agent is Required
What problems is the product solving and how is that benefiting you?
Security Products false positives
Endpoint Visibility
Remote Control over endpoints
Historical Investigation
Endpoint Visibility
Remote Control over endpoints
Historical Investigation
Excellent to manage 'false positives' alerts emanating from a SIEM
What do you like best about the product?
Three things
1. The speed with which the root cause to an alert can be identified
2. The activity of the suspected host
3. Remediation/ freeze from the console.
It seems to provide the ability to compress the investigation / visibility / response capabilities timeframes.
Another highlight is the ability to fight ransomware attacks.
1. The speed with which the root cause to an alert can be identified
2. The activity of the suspected host
3. Remediation/ freeze from the console.
It seems to provide the ability to compress the investigation / visibility / response capabilities timeframes.
Another highlight is the ability to fight ransomware attacks.
What do you dislike about the product?
Trying to figure that out. currently, seem to like what I am seeing.
What problems is the product solving and how is that benefiting you?
Defense for ransomware attacks
Reduce timeframes and hence manage the huge false positives emanating from the SIEM infrastructure
Reduce timeframes and hence manage the huge false positives emanating from the SIEM infrastructure
Recommendations to others considering the product:
A good product/ solution fit if you are considering Behavioral/ threat analytics. The analytics and remediation is pretty intuitive and considering the technology space is not too old, SECDO is doing a good job with cyber security requirements.
showing 41 - 44