Intezer Analyze

Intezer Analyze is offered as a cloud-based service with a simple API, functioning as a plug-and-play solution for your incident response team and daily cybersecurity monitoring. Use this powerful analysis through an intuitive GUI, automatic API or in our many integrations to other security products such as SIEM and SOAR systems. Intezer Analyze Platform

• Endpoint Analysis. Automate endpoint triage and memory analysis, by analyzing every single piece of code running in memory
• File Analysis. Automate file analysis, detecting even the smallest fragments of code similarities to classify malware and prioritize alerts
• Reverse Engineering. Advanced tools, including IDA pro plugin, for accelerating reverse engineering and improving threat hunting capabilities

Customers Subscribing to Intezer Analyze™ Benefit from: Automate the IR cycle with automated reverse engineering, malware classification and actionable remediation Reduce false positives using automated processes that cover 100% of alerts. Accurately identify threats based on Genetic Malware Analysis, revealing even evasive threats Uncover hidden in-memory attacks analyzing entire memory dumps, process dumps, or even fileless code dumped from memory Reduce time to remediation with visibility into the entire threat and full attack storyline Optimize resources with classified threats to ensure your organisation no longer spends resources or miss critical incidents because alerts are sporadically investigated Better target your response with accurate context-based analysis of threats and relevant actionable intelligence Seamless integration with security processes facilitating SOC operations and enhancing the defense ecosystem Strengthen existing prevention and deterrence using genetic code-based vaccines against any future threat that uses similar code Intezer Analyze Use Cases Incident Response & SOC

• Automate malware analysis
• Classify threats automatically, within seconds
• Reduce false positives
• Memory analysis—analyze entire memory dumps, process dumps, or fileless code dumped from memory

Threat Intelligence

• Enrich existing threat intelligence
• Attribution
• Accelerate reverse engineering
• Automatically generate advanced YARA rules to improve threat hunting capabilities

Malware Detection

• Integrate with existing security solutions (gateways and endpoints) to improve malware detection capabilities
• Detect malware and sophisticated APTs where other methods fail
• Screen endpoints and files before connecting to corporate networks