Secdo response

RAPID & SURGICAL RESPONSE WITHOUT BUSINESS INTERRUPTION
Secdo’s Provides IT and Security Teams a Powerful Set of Real Time Response And Remediation Tools That Allow Rapid, Remote Containment and Remediation of Actual Threats on Any Host Without Impacting User Productivity.

ICEBLOCK
Secdo’s unique technology that freezes processes in memory. Users can continue to work safely while the malicious process is frozen in memory. Security analysts don’t have to kill and delete threats, the method used by most enterprises today.

LIVE REMOTE TERMINAL
Allows analysts and IT personnel to run commands and code interactively on any host. They can create their own executables, commands and code for inclusion in the automated investigation process for accurate processing of future alerts and threats.

ISOLATION
Quarantines infected hosts from the network while allowing secure, remote access and prompt remediation.

LIVE FORENSICS
Enables analysts to collect memory dumps and perform memory forensics remotely saving time and network resource consumption for sending memory dumps (4-32GB) across the network.

PYTHON
Allows IT teams to build complex response scripts or scenarios without the need to install Python on the endpoint.

REMOTE SCREEN CAPTURE
Lets analysts take screen shots of any endpoint to obtain additional evidence for use in the remediation process.

AUTOMATABLE RESPONSE
Empowers security and IT teams to continually improve the SECDO system by letting them build new automatable rules and security policies for inclusion in the Observer and Analyzer.