New Generation Threat Awareness System (NGTA) is an integrated solution that provides customers with detection, analysis, response and trace-back capability. Based on network traffic and EDR terminal logs, and by using threat intelligence, rules engine, virtual filel execution, machine learning and other technologies, NGTA can accurately detect the intrusion behavior of known and unknown advanced network attacks against hosts and servers in the network.
At the same time, it use the local big data platform to store and query traffic logs and terminal logs then combine Threat Intelligence (TI) and attack chain analysis to investigate and trace-back events.
FEATURES
PRODUCT FEATURES
Advanced threat detection
Alarm respone handling
Attack backtracking analysis
Abnormal behavior detection
