maandag 24 april 2017

Put a Canary in Your Coalmine

NRJ Security is not a product company, nor do we focus heavily on pushing security products to our clients. Our philosophy is that the services we offer and the products we suggest help you in making it less costly to run security operations and more expensive for attackers to target our clients.

Through our engagement with clients that leverage our Virtual CISO service, we know that detecting attackers as early as possible often makes the difference between a bad day and a really bad day.

Thinkst Canary (https://canary.tools/) delivers on the promise of easy setup and high fidelity alerting. With 20 profiles to configure (several Windows types, Linux types, and even ICS profiles) you can deploy the birds in under 5 minutes. Set and forget.

Being on your internal network, the moment the birds are touched will alert you through a variety of means. You can monitor alerts on the Canary dashboard but you can also choose options like e-mail, sms, and even webhooks for integration with technologies like Slack.

Lastly, you also have the ability to integrate Canary alerting into your SOC automation infrastructure through a crisp and well-documented API.

TL;DR, If your challenge is to detect adversaries on your internal network with a minimum of false positives and a maximum of flexibility, Canaries are your best answer.

NRJ Security can help you today to get the birds flying on your network! Get in touch.