KEY BENEFITS

  • Response and Remediate in Minutes
  • Remediation Is Remote Saving Time & Cutting Expense
  • Fewer Analysts Involved in the Remediation Process
  • Endpoint Connectivity and Use Productivity are Maintained During Remediation Without Compromising Security
  • All Remediation From One Pane of Glass

IceBlock

Secdo’s unique technology that freezes processes in memory. Users can continue to work safely while the malicious process is frozen in memory. Security analysts don’t have to kill and delete threats, the method used by most enterprises today.

Live Remote Terminal

Allows analysts and IT personnel to run commands and code interactively on any host. They can create their own executables, commands and code for inclusion in the automated investigation process for accurate processing of future alerts and threats.

Isolation

Quarantines infected hosts from the network while allowing secure, remote access and prompt remediation.

Live Forensics

Enables analysts to collect memory dumps and perform memory forensics remotely saving time and network resource consumption for sending memory dumps (4-32GB) across the network.

Python

Allows IT teams to build complex response scripts or scenarios without the need to install Python on the endpoint.

Remote Screen Capture

Lets analysts take screen shots of any endpoint to obtain additional evidence for use in the remediation process.

Automatable Response

Empowers security and IT teams to continually improve the SECDO system by letting them build new automatable rules and security policies for inclusion in the Observer and Analyzer.