CounterTack Sentinel delivers real-time context into user and attacker behavior across large endpoint environments.
Sentinel Endpoint Sensor
The Sentinel Endpoint Sensor installs directly on laptop and server endpoints, collecting behavioral data continuously as it monitors the operating system. Attackers and malicious insiders cannot detect the module based on technology that makes it tamper-resistant. This enables pure data collection without impacting system performance or endpoint integrity.
Sentinel Analysis Cluster
The Sentinel Analysis Cluster allows enterprises to monitor endpoints at scale, without performance degradation. Based on Cloudera, Sentinel is the most powerful on-premise EDR platform that delivers enterprise-wide threat correlation. Sentinel is architected with distributed systems in mind, delivering the capability to scale data collection and analysis up and down to meet the demands of sophisticated endpoint environments.
Sentinel Management Console
Sentinel's Management Console is architected so operators can intuitively search for broader threat impact across the enterprise and automatically respond with agility and accuracy. Enterprises can manage detected threats that carry high severity levels that indicate endpoint compromises, and can easily drill down for more visibility into behaviors, objects and processes for a holistic, customized view of your endpoint environment.
Sentinel Knowledge Library
The Sentinel Knowledge Library delivers automated threat analysis and intelligence to operators, and ships with a comprehensive set of compromise profiles. Threat indicators are used to automatically identify the threats they face, based on behavioral analysis, or malware, rootkit and unauthorized insider activity, so security teams and incident response pros can automatically classify threats in real-time, and leverage the context to accurately counter threats.
Lower business risk
CounterTack delivers the one true Endpoint Threat Platform, (ETP) to enterprise customers globally. CounterTack provides a unique combination of threat context, organizational resiliency and broad visibility, to mitigate endpoint risk and reduce the impact of advanced attacks. Combining a robust suite of endpoint detection and analysis capabilities by leveraging a single endpoint sensor and an open, scalable multi-tenant infrastructure, CounterTack helps IR and security teams neutralize and prevent advanced threats from damaging the business. CounterTack delivers its next-generation technology to over 250 customers globally.