Endpoint Detection and Response

Endpoint Detection and Response
December 22, 2020 Comments Off on Endpoint Detection and Response News Fred Dickey

EDR is an extremely powerful cyber forensics analysis tool. We offer Endpoint Detection and Response (EDR) with our Fast Assist Pro Monthly Support plan for businesses and government agencies. It retains up to 90 days of telemetry data on all activities of the endpoints it monitors.

Our EDR agent independently collects logs of the following activity: operating system activities, application activity, process starts and stops, cross-process injections, file access, registry changes, network connections, memory content, and the user’s interactions with data, including creation, modification, transmission, and much more.

For example, I can run a query against the data set to find out on what dates and times any process accessed the microphone on any endpoint on the network.

I can run a query to see when the screen was accessed/captured on any endpoint on any given date and time in that 90 day window. Or when the keyboard was captured. Not just keylogged, but when any process, legitimate or otherwise interacted with the keyboard.

There is AI involved in EDR too looking out for suspicious activity and highlighting suspicious activity and behaviors. This is in addition to Auto Containment, HIPS software based firewall, etc.

A mid-sized organization can produce 40 million processes within a 14 day period of time. That’s a lot of activity to keep up with. No wonder businesses are failing at keeping their infrastructure secure. We have a technology stack that allows us to do just that. Our platform does not rely on signature based detection alone, but actually is a zero trust platform with patented Kernel API virtualization.

How Comodo Cybersecurity Stops Ransomware 100%
Mitre Kill Chain
Share this:
About The Author
Fred Dickey Fred is the owner and founder of Fast Assist. Fred attended college at the University of Tennessee in Knoxville, majoring in Computer Science, after graduating High School in 1990. Being originally from Nashville TN, Fred boasts over 20 years of professional IT experience, having owned his own IT Support company from 1995 to 2006 when he lived in Knoxville TN. Fred has also worked on the IT Corporate Help Desk of a major Federal contractor from 2008 to 2011 and has experience with ITIL and Enterprise level application and infrastructure support. He has worked for several small IT Support companies between then and now before launching Fast Assist on October 2017.