threatER Features

Orchestration (4)

Asset Management: Lets users group and organize their endpoints to gather threat intelligence on specific technologies.
Security Workflow Automation: Reduces the need for IT and security professionals to iterate repetitive tasks associated with gathering threat information.
Deployment: The process in which users integrate their existing security systems and endpoints to the threat intelligence platform.
Sandboxing: A feature that allows security testing and information gathering to occur in a secure, resource independent environment.

Antivirus: Tools to protect a system from viruses by scanning and quarantining any threats.
Whitelists: The ability to green light a specific URL or system to bypass the scanning process.
Antispam Filtering: Tools to prevent spam emails and other spam from entering the network.
Content Filtering: Tools to filter specific content based on the MME type or file extension.
Web Filtering: Tools to block certain websites from being viewed by those in a network.
Firewall: Tools to block off a network or system from outside networks or systems to protect the data within.

Reports & Analytics: The ability to digest a large amount of data into visual representations and analytics.
Dashboard: The ability to view a large amount of data in one place using customizable widgets.
Compliance: Supports compliance with PII, GDPR, HIPPA, PCI, and other regulatory standards.
Administration Console -: Provides a centralized console for administation tasks and unified control.
API / integrations: Application Programming Interface - Specification for how the application communicates with other software. API's typically enable integration of data, logic, objects, etc. with other software applications.
Whitelisting: The ability to green light a specific Domain or system to bypass the scanning process.
Policy Enforcement: Abilities to set DNS protection policy control standards including whitelisting, blacklisting, and application access.
Incident Reports: Produces reports detailing suspicious activity and anomalies related to networks and endpoints.
Domain Categorization: Allows administrators to group users and devices based on IP, Endpoint, or role.
Multi-Network Management: Allows centralized administration and control of DNS protection and policies across multiple networks.

Intrusion Prevention: Enforces security paramaters to prevent unauthorized access.
Firewall: Protects servers, data center infrastructure and information from a variety of attacks and malware threats.
Encryption: Provide some level of encryption of information, protecting sensitive data while it exists within the data center.
Security hardening: Facilitates system and network security by identifying and remediating vulnerabilities
Cloud Data Protection: Provides high quality and wide scope of in-cloud and offline data security capabilities.

Network Segmentation: Allows administrative control over network components, mapping, and segmentation.
Network Mapping: Allows visual display of networks segmented components and their connected resources.
Security Analytics: Utilizes behavioral analysis to improve security procedures and documentation.
API/Integrations: Application Programming Interface - Specification for how the application communicates with other software. API's typically enable integration of data, logic, objects, etc. with other software applications.

Security Automation: Allows administrative control over automated security tasks.
Application Security: Protects application access and data. Prompts additional authentication for suspicious users.
Workload Protection: Protects computing resources across a network. Prompts additional authentication for suspicious users.
Data Protection: Protects informatin stored on premises and in the cloud. Prompts additional authentication for suspicious users.

Quarantine: Blocks malicious website or destination, redirecting the user to a secure page
Continuous Monitoring: Monitors 24/7 to detect anomalies in functionality, user accessibility, traffic flows, and tampering.
Off-Network Protection: Supports agent-based DNS protection with individual endpoint devices on any network.
Guest Network Protection: Allows DNS filtering and protection for guest WiFi networks.
BYOD Protection: Supports bring-your-own-device (BYOD) users, supporting DNS protection across any device connected to a network or equipped with an agent.
Native DNS over HTTPS (DoH): “DoH” is a protocol that facilitates DNS resolution via HTTPS. Native DoH functionality facilitates DNS over DoH using local agents to manage DNS requests, extending DoH beyond a single browser or network.

AI Text Summarization: Condenses long documents or text into a brief summary.
AI Text Summarization: Condenses long documents or text into a brief summary.
AI Text Generation: Allows users to generate text based on a text prompt.
AI Text Summarization: Condenses long documents or text into a brief summary.
Generate Attack Scenarios: Use AI to propose possible threat actor tactics, techniques, and procedures against specific environments or assets.
Generate Threat Detection Rules: Use AI to automatically create detection rules based on observed patterns.
Generate Threat Summaries: Use AI to produce concise summaries of complex threat reports or alerts.