Binalyze
-
Binalyze AIR
Capture the “Forensic State” of an endpoint remotely in minutes! Remote Acquisition Remotely acquire 120+ evidence type including RAM image, Event Logs, Browser History, and Application Artefacts with a single mouse click. Triage with YARA Search YARA rules both in memory and file-system at scale. Triggers for SIEM/SOAR Easily integrate AIR into your existing SIEM/SOAR […]
-
Binalyze IREC
Quick Triage on File System and RAM Lets you search for file names, hashes, command lines or even patterns in file contents and system memory. Collect Them ALL No need to wait for hours. IREC TACTICAL collects 43 types of system evidence alongside 59 application artefacts in minutes! Custom Collection Profiles Create custom collection profiles […]