🔹 Main Functions:
-
Detection of Complex Attacks (including APT and zero-day)
-
Incident Investigation with detailed attack chain analysis
-
Automatic Response (device isolation, rollback of malicious actions)
-
Access Control (monitoring of privileged sessions)
🔹 How It Protects Against Unauthorized Access:
✔ Detection of suspicious user activity
✔ Blocking of unauthorized actions
✔ Audit of access to critical resources
Integrations:
-
Kaspersky Endpoint Security
-
SIEM systems
-
SOAR platforms