How Endpoint Forensics works
Endpoint forensics works by monitoring all the processes running on
endpoints at a given time. By doing this, it's possible to pinpoint
processes often used in multi-stage malware and identify specific
processes that deviate from normal behavior.
What was once a new and prohibitively expensive technology has been
refined and scaled so that organizations can invest in endpoint
forensic data capture and analysis.
Endpoint Forensics is a key pillar of FireEye
Endpoint Security and allows organizations to investigate
threats before they can complete an attack, access critical endpoints
and breach important data.