RAPID7 in Anomaly Detection Software

Rapid7’s InsightIDR provides easy cloud based log and event management. It detects and contain these threats before things get critical. Accelerate investigations 20x with visual timelines. Contain attacks across your users and assets from within InsightIDR.

Features:

• User Behavior Analytics: InsightIDR extends beyond defined indicators of compromise to reliably detect attackers masking as company employees.
• Attacker Behavior Analytics: The analysts behaves as attacker and try to eliminate the attacks earlier in the attack chain.
• Endpoint Detection and Visibility: InsightIDR comes standard with a cross-product, universal Insight Agent and endpoint scanning, giving real-time detection and the ability to proactively hunt for answers.
• Centralized Log Management: Cloud-based architecture behind the Rapid7 Insight platform delivers a smooth search across logs and automates compliance without worrying about racks of hardware.
• Visual Investigation Timeline: InsightIDR unites log search, user behavior, and endpoint data in a single timeline to help you make smarter, faster decisions by as much as 20x.
• Deception Technology: InsightIDR provides not only UBA and endpoint detection, but easy-to-deploy intruder traps which include honeypots, honey users, honey credentials, and honey files, all created to identify malicious behavior earlier in the attack chain.
• File Integrity Monitoring (FIM)Automation: Once Insight Agent is deployed to critical assets, the user can activate file integrity monitoring to flag any changes to any specified files or directories on that endpoint.