skip to Main Content

ATTACK DETECTION

Zero-day Threats and Attacks

Advanced Attack Detection

FireTower uses an Inter-Host Intrusion Prevention system to discover, authenticate critical events at endpoints and synthesize threats at a centralized database. FireTower can either automatically or on-demand quarantine cyber attacks including Zero-day malware.

INCIDENT RESPONSE

Threats, quarantines, interdiction.

Security Response

FireTower automatically quarantines suspicious and malicious events in real-time at endpoint per protection profile setting. FireTower enables identification, containment, and interdiction at all at-risk systems through interactive threat exploration interface

CONTINUOUS MONITORING

Live forensics

Continuous Monitoring

FireTower monitors persistence mechanism change events, and disrupts malware kill chains. FireTower continuously monitors and aggregates all critical security events with real-time authentication from endpoints to maintain a real-time enterprise threat database.

ENDPOINT VISIBILITY

Interactive Threat Exploration

Endpoint Visibility

FireTower delivers an enterprise integrated endpoint visibility with built-in analytics. FireTower activity monitor alerts any ongoing attacks and malware lateral movements and also provide an instant malware triage platform with live forensics for postmortem investigation.

FireTower Security Solution

FireTower for Windows endpoints (desktops, servers, laptops) is a security solution for enterprise continuous monitoring and attack protection.

Traditional signature-based anti-virus solutions of Endpoint Protection Platforms cannot prevent advanced attacks. FireTower Security Solution can detect and contain Zero-day attacks and suspicious threats in real-time, and significantly improve enterprise security monitoring, threat detection and incident response capabilities with live forensics.

EDR tools have become a critical component of enterprise security architecture to combat zero-day attacks and targeted attacks. FireTower discovers and authenticates critical change events at endpoint computers and synthesizes discoveries to a centralized enterprise threat database maintained by the FireTower service. Through this threat database, FireTower provides an interactive threat exploration interface with built-in analytics to hunt for indicators of compromise, to deliver comprehensive endpoint visibility and to enhance the detection and containment of malicious activities.

The FireTower Security Solution can be deployed to perform continuous monitoring for security operation centers to provide live forensics for hunting indicators of compromise and ongoing attacks.

FireTower Operating Environments

Endpoint Operating Environments
Windows Desktop OS: XP/Vista/ 7/8/10
Windows Server OS: 2003R2/2008R2/2012R2
FireTower Server Environments
Windows Desktop OS: 7/8/10
Windows Server OS: 2008R2/2012R2
FireTower Server Communication Stacks
Microsoft Internet Information Services (IIS) 7.5+
XAMPP or WAMP web server solution stack
Cyber Console Operating Environments
Windows Desktop OS: XP/Vista/ 7/8/10
Windows Server OS: 2008R2/2012R2
Communication link to FireTower Service
FireTower Endpoint Push Deployment
Client endpoints in Domain Active Directory
FireTower Server with domain admin account
Cyber Console with domain admin credential
Technical Knowledge Requirement
Windows support professionals
Windows system and network knowledge
Windows support and training
Back To Top