Few months ago, we started to work the new dashboard for Threat Prevention Investigation methods.
You can find the first post in here: Threat Prevention Cyber-attacks dashboard
I am happy to announce that we formally released the version for R80.10 & R80.20 under the following SK - sk134634
This dashboard is allowing you to locate the cyber threat you need to address to based on attack vector and in a very fast way. our EA customers were able to locate threats on/in their network in a very fast way and without the need to query on their logs as the first action.
we improved the queries also based on the community inputs and we are looking for more improvements and inputs from the community. if you have any inputs related to the dashboard please contact me directly - Orenkor@checkpoint.com
examples for all of the pages in the dashboard.
- Infected Hosts
- Reconnaissance action on your network
- Different delivery methods
- Host exploit
- Malicious Websites