Open XDR

The Open XDR concept is an evolution of the XDR (eXtended Detection & Response) platform by enabling the direct linkage to developed and marketed cybersecurity solutions from different vendors.

EPP (Endpoint Protection Platform)

An EPP is an endpoint security solution that comes from the next-generation antivirus world. Such an agent is capable of preventing many attacks like file-based malware attacks and malicious activities, with specific features against many security issues like phishing, exploitation/0-days and network attacks.

NIDS (Network Intrusion Detection System)

NIDS or Network Intrusion Detection System are solutions that analyze traffic and try to find unusual activities, like scanning, intrusion attempts, lateral movements, exfiltration, backdoors, command and control, etc.

This was initially done through signatures, but over time some solutions evolved to NTA. TEHTRIS NTA includes NIDS features with more than 50,000 regularly updated rules.

MTD (Mobile Threat Defense)

Mobile Threat Defense or Mobile Threat Defense (MTD) is a dynamic and sophisticated protection against cyber threats targeting mobile devices. With an MTD, protection is applied to devices, networks and applications.

CTI (Cyber Threat Intelligence)

CTI is based on multiple kinds of sources like open source intelligence, social media intelligence, human intelligence, technical intelligence or even intelligence taken out of the deep or dark web.

Honeypots

Honeypots are fake resources that can be used to delude attackers. As an example, this could be a fake computer added in a real network, so that any incoming communication might look like something suspicious, as nobody should talk with it. This is something really complex, but it can help at finding remote attackers as soon as they got an access, trying to explore your own infrastructure.

EDR (Endpoint Detection & Response)

An EDR is an endpoint security solution that first came out to address the shortcomings of next-generation antivirus technologies. This agent is capable of detecting unknown attacks and launching sophisticated remediations against advanced threats, with superior investigation features.

NTA (Network Traffic Analysis)

An NTA appliance can analyze traffic in order to find unusual activities and attacks. It combines behavior analysis, artificial intelligence, and NIDS-type signature-based features.

SIEM (Security Information and Event Management)

A SIEM is cybersecurity solution combining security information management (SIM) and security event management (SEM) in order to analyze logs and events generated by all kinds of sources, like systems, applications and network devices.

XDR (eXtension Detection & Response)

XDR brings a whole new take on cybersecurity. It is a platform that can be easily deployed to combine the power of many powerful sensors like EDR, EPP, SIEM, NTA, Cloud Workload Protection Platforms, honeypots and so on.