How Endpoint Forensics works
Endpoint forensics works by monitoring all
the processes running on endpoints at a given time. By doing this,
it's possible to pinpoint processes often used in multi-stage malware
and identify specific processes that deviate from normal behavior.
What was once a new and prohibitively
expensive technology has been refined and scaled so that organizations
can invest in endpoint forensic data capture and analysis.
Endpoint Forensics is a key pillar of FireEye
Endpoint Security and allows organizations to investigate
threats before they can complete an attack, access critical endpoints
and breach important data.