Version: v3.6 (deprecated)

Multi-Stage Attack Disruption

MultiStage, Wide-Area Attack Disruption

ThreatStryker helps you detect multiple stages of an attack and provides protection policies to disrupt those attacks at various stages.

Quarantine Policies

Quarantine policies enable reset, pause and decommissioning of infected containers, pods or virtual machines:

Add New Quarantine Policy

Network Policies

Network policies enable blocking external as well as internal attackers on their tracks.

Define New Network Policy

View Network Policies

Alert Correlation with Clustering Rules

User can define rules to cluster similar alerts based on their classtypes, frequency and spatial attributes. This helps to reduce potential noise, and view the alerts in a grouped manner.

Define Alert Clustering Rule

View Alert Clustering Rules

Intent Detection Rules

Intent detection rules empower users to perform advanced correlation on alerts based on various alert attributes like classtypes, intents, presence of known vulnerabilities and other spatial attributes as follows:

Define Intent Detection Rule

View Intent Detection Rules

Quarantine Policies​

Network Policies​

Alert Correlation with Clustering Rules​

Intent Detection Rules​

Quarantine Policies

Network Policies

Alert Correlation with Clustering Rules

Intent Detection Rules