about fade

shutterstock_1197153475_edited.jpg

FALCON DETECTION ENGINE

INTRODUCING THE

FADE ENGINE

Collect

Collects the right security telemetry

Hunt

Automatically hunts down hidden cyber threats

Report

Reports accurate alerts and indicators of attack

falcon-guard-full-visibility-500.jpg
Full
Visibility

FADE provides a comprehensive visibility into threats that were able to evade all other detection controls. We achieve this through real-time hunts and historical Machine Learning hunts for the early detection of outsider and insider attacks.

Reveal
Hidden

FADE leverages unsupervised Machine Learning algorithms to identify and flag outliers in the behavior of processes, users and devices. This enables the early discovery of stealth threats and attacks.

falcon-guard-full-reveal-hidden-500.jpg
falcon-guard-full-low-footprint-500.jpg
Low
Footprint

With FADE there are no additional agents to manage or impacting critical business servers and applications. Data collection is done by native Windows tools and volatile scripts.

Highly
Scalable

FADE scales up to 1000s of EPS. We collect all the meaningful data from every single device in the environment. Never miss a single event for troubleshooting, hunting, or IR investigations.

falcon-guard-full-higly-scalable-500.jpg
Bez názvu-1.jpg

STEP BY STEP

THIS IS HOW

IT WORKS

Vektorovýinteligentníobjekt_81cae523-6

Collects enhanced Windows audit logs as well as Sysmon to provide an adequate visibility

Vektorovýinteligentníobjekt_c81d20b5-5

Hunts trough historical data using supervised and unsupervised Machine Learning algorithms to discover hidden attack patterns and stealth threats

Vektorovýinteligentníobjekt_f985558f-7

Provides a feed of high confidence security events containing rich contextual information and mapping to the MITRE ATT&CK

Vektorovýinteligentníobjekt_1a5bc04c-6

Scans in real-time the security data using our large library of more than 150 detection rules mapped to the MITRE ATT&CK framework.

3.png

Automatically enriches every event with additional contextual intelligence information available to our Threat Intelligence platform

Vektorovýinteligentníobjekt_d64b4d50-7

Provides a regular feed with information of all the new assets and applications discovered in your environment