Automate time-intensive manual processes in your e-discovery and incident response workflows with our full-featured API.
Dramatically reduce the time needed to start a case after your SIEM tool triggers an event. Use the API to integrate seamlessly with your cybersecurity platform (such as Splunk or Cortex) to kick off a post-breach investigation from the first moments after an intrusion has been detected. The API can initiate the immediate collection of electronic endpoint data, preserving evidence related to the root cause of a data breach and saves precious time in the initial stages of incident response.
Integrate with e-discovery systems to automate a standard endpoint collection after someone is put on a litigation hold. This type of automation allows less experienced users to use a litigation hold functionality but still preserve endpoint data automatically.
Integrate your management tools with FTK® Lab to automatically create cases and process jobs with defined organization standards, dramatically cutting the time users wait for jobs to be completed.
The API uses the Representational State Transfer (REST) architecture to access and manipulate data based on uniform and predefined operations. The RESTful API is stateless, so each request contains all information necessary to perform the requested action.