Overview

“Group-IB Threat Hunting Framework is a complex solution for threat detection, hunting, and response with MDR options. It is intelligence-driven and based on our adversary-centric approach and patented technologies.

The main functionalities include:
– EDR agents
– Network traffic analysis sensors
– Malware detonation platform
– Email security
– Built-in tailored threat intelligence (part of Group-IB Threat Intelligence & Attribution)
– XDR-like single management console for event correlation, incident management, streamlined response playbooks, and more

Product’s architecture grants increased visibility and network protection, empowered by Threat Intelligence data and advanced threat hunting and analytical tools. With Group-IB Threat Hunting Framework our customers can:
· Detect previously unknown threats, using ML and dynamic analysis to look for anomalies in network traffic and on the hosts.
· Partially automate threat hunting within and beyond network perimeter with events correlation, attackers’ infrastructure exposer and technological toolkit
· Detonate and analyze malware like no other solution, using realistic virtual environments and unique detection-evasion tools
· Protect workstations, servers and other nodes with instruments for automated incident response and host isolation
· Attribute and analyze threats with network Graph analysis, based on unparalleled amounts of data”