CrowdStrike Falcon® MSSP Advanced Defend stops breaches by combining Falcon PreventTM next-generation antivirus (NGAV), Falcon InsightTM endpoint detection and response (EDR) and Falcon OverWatchTM proactive threat hunting. This product protects against the entire spectrum of attacks, including ransomware, malware-free attacks and fileless attacks, without requiring daily updates. It also combines the best prevention technologies: machine learning, artificial intelligence (AI), indicators of attack (IOAs), exploit blocking and more. Advanced Defend covers gaps left by legacy antivirus and fully protects endpoints online and offline. Intelligent EDR prevents silent failure by capturing raw events for automatic detection of malicious activity, providing unparalleled visibility, proactive threat hunting and forensic investigation. It also unravels an entire attack in the easy-to-use CrowdScoreTM Incident Workbench, enriched with context and threat intelligence data Provides powerful response action to contain, investigate and remediate compromised systems. With 24/7 proactive threat hunting, OverWatch instantly augments your managed services team with a global team of elite threat hunting experts and helps you see and stop the stealthiest sophisticated threats to better protect your customers. Dlite human experts using global reach, proprietary tools and up-to-the- minute threat intelligence means OverWatch can hunt with unprecedented speed and scale. Additional security modules include:
Vulnerability management – Get holistic protection that bridges the gap between vulnerability management and threat prevention, seamless cloud-native deployment requiring no additional agents or new infrastructure, up-to-date knowledge on demand, and zero-impact, scanless assessment.
Device control – Get detailed visibility on USB device usage. Device control also enables granular policy enforcement to ensure control over USB devices used in the environment.
Firewall management – Create, manage and enforce policies easily and defend against network threats and provides instant visibility to enhance protection and inform action.
Mobile management – Get real-time visibility into iOS and Android devices and continuous monitoring of enterprise app behavior. Mobile management also delivers real-time threat hunting on mobile devices and offers unified EDR across laptops, workstations, servers and mobile devices Preserves device resources and protects user privacy.
Pax8 Academy- CrowdStrike 101