Allows users to identify polymorphic and metamorphic malware
Guidance Software has released EnCase Cybersecurity, designed for information security, network defence and incident response teams to protect sensitive information and identify network threats.
According to Guidance Software, the new EnCase Cybersecurity augments existing information security tools that aim either to block quarantine data such as firewalls, intrusion prevention systems, antivirus, or data loss prevention tools or that trigger or correlate alerts, such as intrusion detection systems, configuration management, or SIM and SIEM tools.
The company said that new product provides the ability to identify and analyse undiscovered threats, such as polymorphic or metamorphic malware, packed files, and other advanced hacking techniques that evade traditional network- or host-based defences. It also provides investigative capabilities allowing organisations to search across its network for sensitive or confidential data, such as credit card numbers, account numbers, or intellectual property.
Guidance Software said that the new tool reduces risk by wiping sensitive or confidential data from unauthorised locations, and removing malware and malware artifacts from hard drives, RAM, and the Windows Registry on laptops, desktops and servers.
In addition, EnCase Cybersecurity also provides visibility into endpoint risk, leveraging disk-level forensic access of data on endpoints, with the ability to compare endpoints against a baseline.
Victor Limongelli, president and CEO of Guidance Software, said: “Since we previewed EnCase Cybersecurity at our annual CEIC user conference in May, both public and private sector customers have expressed great interest in its capabilities to protect networks, reduce risk, and respond to breaches.”