Threat Hunting Service

What is Threat Hunting?

Threat hunting is the process to proactively discover hidden threats in systems or networks. Hunting helps augment existing NGAV and EDR detection capabilities within the organization by providing a human driven and machine assisted analysis of the environment, leading to a faster detection and eviction of a hidden threat actors.

How we perform threat hunting

Our threat hunting detections run in isolated docker containers in a per-customer segmented AWS cloud. Detections then continually reach out to customer EDR platforms and analyze telemetry for indicators of threat activity.

What to expect:

• Establish incident escalation process
• Onboarding of EDR telemetry
• Ongoing threat hunting
• Continual threat alerting