Software - Evaluation

 Bricata Software:

It is the leader in complete organization assurance. The Bricata solution gives unmatched network permeability, full-range threat identification, threat chasing, and post-location reaction capacities in a natural, firmly coordinated, and self-overseeing system. Its automated detection, productive GUIs, and expert system workflows make it easy-to-use for novices, while granular control of its engines, access to rich network metadata and PCAPs, and threat hunting capabilities give experts the power and control they demand. Bricata has been demonstrated to speed incident resolution by up to eight times by dependably recognizing threats and giving the setting important to get to truth rapidly and act(garlandtechnology,2021).



(Graner ,2019)





Benefits:

1-ML-Based Malware Conviction: automated analysis performed instantly by statically analyzing each item, identifying malicious behaviour and prioritizing analyst workflow (bricata,2021).

2-Speed of Response: with Bricata, analysts can close the gap between detection and response faster than ever and accelerate incident response(bricata,2021).

3-Smart PCAP: quickly access relevant data during an investigation with reduced storage requirements from Smart PCAP (bricata,2021).

4-Customizable & Flexible: bricata’s powerful platform is flexible and can be customized to create the workflows, use cases and integrations to meet your specific needs. (bricata,2021).







Who uses Bricata?

1-Companiescan quickly eliminate blind spots in their environment in the data center or the cloud and easily scale(bricata,2021).

2-Security Teams: can maximize talent and be more efficient and effective(bricata,2021).

3-Analyst: can see real-time metadata, tune detections and get direct answers quickly(bricata,2021).








(Waitt,2020)



One of the most remarkable feature is that Alert Grouping. Bricata currently upholds the grouping of alarms dependent on type. This altogether diminishes the volume of cautions an investigator needs to parse and accelerates alert investigations(Waitt,2020). The above picture summarises the details.










References:


BRICATA (2021) BRICATA PRODUCT TOUR. [Online] BRICATA. Available from:Bricata - Network Detection & Response. Analytics. Threat Hunting [Accessed 05/06/21].

WAITT, T (2020) Bricata Network Security Offers Support for MITRE ATT&CK® [Online] AMERICANSECURITYTODAY. Available from: Bricata Network Security Offers Support for MITRE ATT&CK® - American Security Today [Accessed 06/06/21].

GRANER , A (2019) ZeekWeek Q&A with the Community: Bricata [Online] ZEEK. Available from: Zeek: ZeekWeek Q&A with the Community: Bricata [Accessed 06/06/21].

GARLANDTECHNOLOGY (2021) Bricata Detect and Defend With AI-Based Malware Conviction and Anomaly Detection [Online] GARLANDTECHNOLOGY. Available from: Garland Technology Partner | Bricata [Accessed 06/06/21].

0 Comments