Falcon Security and IT operations Features

Lets users group and organize their endpoints to gather threat intelligence on specific technologies.

Reduces the need for IT and security professionals to iterate repetitive tasks associated with gathering threat information.

The process in which users integrate their existing security systems and endpoints to the threat intelligence platform.

A feature that allows security testing and information gathering to occur in a secure, resource independent environment.

Prior to security incidents, the product will alert users when a new, relevant vulnerability or threat is discovered.

Provides multiple techniques and information sources to alert users of malware occurrences.

The ability for users to produce reports outlining detailed and personalized threat information

Analysis for users to examine threat intelligence data specific to their endpoint devices.

The product has a recurring examination process to update your intelligence reports as new threats emerge.

The ability to examine your application, website, or database's code to uncover zero-day vulnerabilities.

Identifies potentially malicious files and applications for threats files and applications for abnormalities and threats.

Analyzes infortmation from a computer or other endpoint's memory dump for information removed from hard drive.

Identifies recently accessed files and applications for abnormalities and threats.

Parses and/or extracts emails and associated content for malware, phishing, other data that can be used in investigations.

Allows for parsing and/or extraction of artifacts native to Linux OS including but not limited to system logs, SSH activity, and user accounts.

Gives alerts when incidents arise. Some responses may be automated, but users will still be informed.

Constantly monitors activity related to user behavior and compares activity to benchmarked patterns.

Constantly monitors traffic and activity. Detects anomalies in functionality, user accessibility, traffic flows, and tampering.

Facilitates the decryption of files and data stored using cryptographic algorithms.

Produces reports detailing trends and vulnerabilities related to their network and infrastructure.

Provides relevant and helpful suggestions for vulnerability remediation upon detection.

Reduces time spent remedying issues manually. Resolves common network security incidents quickly.

Analyzes data associated with denied entries and policy enforcement, giving information of better authentication and security protocols.

Stores information related to common vulnerabilities and how to resolve them once incidents occur.

Monitors data quality and sends alerts based on violations or misuse.

Aggregates real-time updates and historical data from multiplate internal and external data sources to support ongoing proactive threat response.

Detects new assets as they enter cloud environments and networks to add to asset inventory.

Identifies unsanctioned software.

Provides tools to track and implement required security policy changes.

Allows for vulnerability ranking by customized risk and threat priorities.

Gathers information about the system and potential exploits to be tested.

Uses machine learning to identify at-risk data.

Stores information related to common threats and how to resolve them once incidents occur.

Condenses long documents or text into a brief summary.

Allows users to generate text based on a text prompt.

Condenses long documents or text into a brief summary.

Condenses long documents or text into a brief summary.

Use AI to propose possible threat actor tactics, techniques, and procedures against specific environments or assets.

Use AI to automatically create detection rules based on observed patterns.

Use AI to produce concise summaries of complex threat reports or alerts.

Capability to perform complex tasks without constant human input

Ability to break down and plan multi-step processes

Anticipates needs and offers suggestions without prompting

Makes informed choices based on available data and objectives