🎯 Actionable insights without the noise.
Palo Alto Networks Unit 42 MDR, backed by Cortex by Palo Alto Networks XDR, outpaces the competition, delivering MTTD almost twice the speed of the average participant in the MITRE Engenuity ATT&CK Evaluation: Managed Services.
With just 37 targeted email alerts, not hundreds. 👀
Learn more about our results. https://bit.ly/3RTCF3J
Unlocking a World of Efficiency: Explore the myriad benefits of partnering with a Managed Service Provider (MSP). From enhanced security to seamless operations, experience the transformative power of proactive IT solutions. 🌐🔐💻
😱 EDR Bypass with Burp
🌎 Catchy title aside, the second part of EDR research by Riccardo Ancarani and Devid Lana is out.
🌥 It is an interesting scenario where they analyze how EDR works and how it is configured and delivered via "Cloud," a very useful process.
💻 This reminds me, when I was working in a multinational company, they had just installed a well-known Rapid Incident Response software. We had figured out how to use it to launch arbitrary commands (anyone said: RCE?) with high privileges through them by manipulating XML files from it (back in the day, XML was all the trend; now they are JSON).
#edr#cyber#bypass
Offensive Security Operator. Red Team Lead. Adversary Simulation. @APTortellini Co-Founder
Me and Riccardo Ancarani continued the research against one top products in the EDR space. This time, we will take a closer look at the network stack and how that can be manipulated to achieve our goals:
Just came across an informative executive advisory that's a must-read, especially for CISOs. Palo Alto Networks Unit 42 has provided an advisory that gives you solutions to address the constantly changing cyberthreat scenario.
It explores enhancing incident response, identifying state-sponsored attacker methods, and making the most of your technological toolkit. This is required weekend reading in the digital age, where cybersecurity is paramount.
Hey, CISOs: are you prepared to face the evolving landscape of cyberthreats? Our latest executive advisory will equip you with essential strategies straight from Palo Alto Networks Unit 42.
Enhance incident response, uncover state-sponsored attacker tactics, and make the most of your technology. Perfect weekend reading. https://bit.ly/47edZs7
Are your endpoints secure? If you have to think about it, it’s time to think again. Sign up for our Palo Alto Networks#Cortex#XDR webinar and find out how you can achieve lightning-fast threat investigation and response.
Are your endpoints secure? If you have to think about it, it’s time to think again. Sign up for our Palo Alto Networks#Cortex#XDR webinar and find out how you can achieve lightning-fast threat investigation and response.
Are your endpoints secure? If you have to think about it, it’s time to think again. Sign up for our Palo Alto Networks#Cortex#XDR webinar and find out how you can achieve lightning-fast threat investigation and response.
Are your endpoints secure? If you have to think about it, it’s time to think again. Sign up for our Palo Alto Networks#Cortex#XDR webinar and find out how you can achieve lightning-fast threat investigation and response.
⚡ CrowdStrike Falcon® Complete MDR set a new benchmark with the fastest mean time to detect (MTTD) at only 4 minutes in the new MITRE Engenuity ATT&CK® Evaluations: Managed Services, Round 2.
💻 Read the full story on our blog: https://lnkd.in/edpGCCm5
⚡ CrowdStrike Falcon® Complete MDR sets a new benchmark with the fastest mean time to detect (MTTD) at only 4 minutes in the new MITRE Engenuity ATT&CK® Evaluations: Managed Services, Round 2 detection-only test.
In this scenario, prevention capabilities of the Falcon agent were not permitted. The Falcon platform was operating in detect-only mode. CrowdStrike achieved the highest detection coverage and fastest MTTD of all vendors evaluated.
💻 Read the full story on our blog: https://lnkd.in/ep_e7fS5
Google Cloud Certified Digital Leader | Azure Security Engineer Associate | Microsoft Security Operation Analyst Associate | (ISC)2 Certified In Cybersecurity | CompTIA Sec+
2wGood to know! Any webinar about this?