0
1.0.14
Yokohama, Xanadu, Washington DC, Vancouver Patch 4, Vancouver
With FireEye Endpoint Security (HX series), organizations can proactively inspect, analyze, and contain known and unknown threats on any endpoint.
The Security Incident Response integration with FireEye HX makes it easier and more efficient for Security Analysts to investigate and remediate security incidents instantly without having to navigate between tools. You can use network containment to perform remediation actions on the endpoints, implement profiles to gather specific details about the host, and perform particular queries or actions on the endpoint.
- Ability to perform host enrichment actions to gather more details about the endpoint, such as host details, network statistics, user details, file details, process details, and service details.
- Perform Enterprise Security Search to sight potential malicious observables across endpoints, and take remediation actions.
- Gather Triage and Data Acquisition for in-depth endpoint inspection and analysis.
New:
- Migration of Workflows to Flow Designer flows for Security Incident Response integration with FireEye Sighting Search, by enhancing the automation capabilities and process efficiency.
Before using the Security Incident Response integration with FireEye HX, you must install the application and configure it.