illusive networks launches its External Incident Application Program Interface
July 2017 by Emmanuelle Lamandé
illusive networks announced the launch of its External Incident Application Program Interface (API) and Risk Metrics tools, minimizing the manpower needed to manage high impact incidents while expediting their investigation and prioritizing remediation.
illusive’s new External Incident API supports the gathering and processing of incidents from any other prevention and detection technologies deployed across a network, producing forensics for each event in real-time. Facilitating the automation and parsing processes of all forensics data significantly enhances the efficiency of incident handling.
The API enables illusive’s Attacker View feature to present a unified view of events generated from both illusive and other external sources, aiding security teams to leverage the power of forensics data provided, gaining deeper insight that supports more rapid, decisive action.
illusive Attacker View highlights possible hacker pathways from the compromised host to the most prized assets of an enterprise. Newly introduced Risk Insight capabilities analyze the number of lateral moves required in each pathway, generating a metric to better prioritize incidents and remedial actions.