This app is archived. App archiving documentation

LiveAction ThreatEye 2.0 Suite

ThreatEye is a Network Detection and Response (NDR) platform built by security analysts for security analysts. Without decrypting or "breaking" encrypted traffic, ThreatEye uses real-time network forensics and AI to rapidly detect suspicious behavior, including Advanced Persistent Threats and Ransomware. LiveAction's ThreatEye 2.0 Suite allows organizations to export findings and enriched network telemetry from ThreatEye into Splunk, providing insights into their network's performance and detecting potential threats in real time. This workflow gives enhanced visibility into corporate network security and improves the time to identification and response of potential threats. As a result, organizations with ThreatEye 2.0 Suite can better strengthen their security posture and safeguard their assets against malicious attacks.

Built by

Latest Version 2.1.2

March 29, 2023

Compatibility

Splunk Enterprise

Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0

CIM Version: 5.x

Rating

0

(0)

Log in to rate this app

Support

Not Supported

ThreatEye is a Network Detection and Response (NDR) platform built by security analysts for security analysts. Without decrypting or "breaking" encrypted traffic, ThreatEye uses real-time network forensics and AI to rapidly detect suspicious behavior, including Advanced Persistent Threats and Ransomware. LiveAction's ThreatEye 2.0 Suite allows organizations to export findings and enriched network telemetry from ThreatEye into Splunk, providing insights into their network's performance and detecting potential threats in real time. This workflow gives enhanced visibility into corporate network security and improves the time to identification and response of potential threats. As a result, organizations with ThreatEye 2.0 Suite can better strengthen their security posture and safeguard their assets against malicious attacks.