Proactive threat hunting process
Inopli proactively seeks out new correlation rule possibilities. Using pre-set scripts, it scans vast datasets from monitored sources to identify potential new rules. When a promising correlation rule is found, Inopli adds it to its internal knowledge base and prompts the appropriate team to create the rule in the system.
Health check process for monitoring solutions
Following successful deployment in the SIEM Management phase, Inopli uses an agent to monitor the health of servers running solutions like SIEM, critical for early disruption detection. Using predefined scripts, it performs custom health assessments, accurately identifying anomalies. If an issue arises, Inopli promptly alerts the corresponding team.
Process for remediating identified issues from health check
Inopli enables organizations to control which response teams or "squads" should intervene in a specific incident. This ensures the most skilled and available team manages incidents, leading to more effective and efficient responses.