RaptorX DNA Engine detects adversaries by parsing full packet capture data to extract hundreds of security-relevant signals. Identify stealthy threats such as file-less malware, insider threats, credential abuse and data exfiltration that evade existing defenses.
RaptorX Alpha collects 280 different kernel API calls, providing real time visibility into all types of activities performed by the endpoint. Discovering adversaries in real time to stop the attacks before they become breaches, built as part of the kernel framework to stop any malicious code execution before committing in memory or disk.
Decomposing data over the clock, to provide insight and analysis to expose sophisticated adversaries managed to go undetected. ONE9 hunt, investigate and advise on cyber threat adversaries to avoid massive compromise. Any detections by ONE9 is fed back to the machine learning algorithms and the threat detectors to boost the classifiers supervised knowledge of the new adversaries TTPs and methods, and attributing the intelligence back to the known threat actors groups.
MITRE ATT&CK THREAT DETECTION COVERAGE
Hunting the adversary means tracking their tactics, techniques, and behaviors.
RaptorX platform maps threat detection coverage to MITRE ATT&CK.