DNSWatch is a nextgen endpoint + cloud solution that automates the rapid identification of malicious DNS queries, even when the endpoint isn’t connected to the enterprise. DNSWatch automatically monitors both suspicious queries and suspicious responses that are tell-tale signs malicious activity. DNSWatch is built on Amazon’s cloud, which allows for the rapid integration with nearly all security and desktop solutions.
DNS Cache
DNS Cache Search
DNS Cache Search Results
OUR PROCESS
Step 1
Deploy the ultra-lightweight collector to endpoints.
Step 2
Collect and filter DNS queries.
Step 3
Send the encrypted data to our cloud-based analytics system.
Step 4
Automated alerts with configurable criteria.