EnCase® Cybersecurity

EnCase® Cybersecurity includes all new capabilities that assist in keeping organizations ahead of those that wish to compromise their networks. As hackers have realized that static malicious code is easily thwarted, new methods are being employed to allow malicious code to evade detection, such as polymorphic code — code that can morph frequently to avoid detection from conventional scanners. With the ability to triage for covert threats, perform detailed code and behavioral analysis to determine if a particular piece of malware has the ability to morph, and advanced algorithms to determine code similarity, EnCase Cybersecurity allows organizations to zero in on and recover from the most evasive threats — all within a single solution.

Product Features
Key Benefits
• Address network defense, incident response and risk assessment with a single solution
• Find and remove sensitive data from unauthorized locations
• Quickly and effectively identify and respond to both known and unknown threats
• Thoroughly analyze and remediate malware from a central location with no disruption to operations

Key Features
• Patented technology allows for the identification of file similarities to help uncover polymorphic malware
• Collect and preserve only relevant data; no need index or capture entire hard drives
• Operates at the disk and memory levels, allowing complete visibility into endpoint data
• Integration with HBGary Responder Professional allows for the capture and in-depth analysis of unknown files and processes
• Compare endpoints against a trusted baseline or the Bit9 Global Software registry to identify any deviation from a trusted state