Top cyber security products unveiled at Black Hat 2022>
Channel Asia, from IDG – Shweta Sharma
Checkmarx API Security
Key features include the ability to automatically identify API endpoints; discovery of newly created or updated APIs as source code is checked in or compiled by developers; automatic comparison of an applicationâs APIs with its documentation in order to identify unknown APIs; and remediation capabilities designed to let security professionals and developers prioritise remediation of API vulnerabilities and OWASP (Open Web Application Security Project) risks.
Cybereason: Cybereason MDR
The application uses a malicious operation (MalOp) detection engine to generate detailed intelligence for an active hacking operation, how it maps to the MITRE ATT&CK framework, and its threat level. Cybereason MDR Mobile app will be available later this month on both Appstore and Playstore.
Cycode: new supply chain security features
Software composition analysis (SCA), static application security testing (SAST), and container scanning are the latest capabilities in the Cycode supply chain security management platform.
Dynatrace: Runtime vulnerability monitoring
Support for vulnerability detection and protection across runtime environments including Java Virtual Machine (JVM), Node.js, and .NET CLR, has been added to the Application Security Module in the Dynatrace software and infrastructure monitoring platform.
Mimecast: Mimecast X1
Mimecast X1 will include four key improvements over earlier versions: machine learning capabilities for more enhanced detection of emerging and unknown threats; new context-based data analytics, allowing for cross-correlational analysis of new threats; an API ecosystem to allow integration with existing security systems including SIEM (security information and event management), SOAR (security orchestration, automation, and response), EDR (endpoint detection and response), and XDR products; and what the company calls a service fabric, a cloud-native system designed to insights into user behavior that can help accelerate threat detection and response.
NetRise: IoT threat detection
The new product is aimed at providing complete visibility into all the IoT products used within an organisation by continuously monitoring firmware to identify vulnerabilities, compliance adherence, software bill of materials (SBOMs), misconfigurations, and overall risks. Through a recent partnership with Fortress Information Security (FIS), NetRise hopes to bring its new firmware analysis platform to FISâ existing global customers.
Rezilion: Mi-X
Mi-X is a free open-source tool by Rezilion designed to enable the cyber security community to evaluate whether a certain vulnerability is exploitable.
Sentinel One: XDR Ingest
XDR Ingest is a free tool for Sentinel Oneâs Singularity XDR (extended detection and response) customers, designed to ingest, retain, correlate, search and take action on all enterprise security data, both real-time and historical.
Sysdig: CDR (cloud detection and response)
Sysdigâs CDR (cloud detection and response) is a cryptojacking-protection offering designed to protect against unauthorised use of computing resources to mine cryptocurrency. Sysdig CDR curates rules based on machine learning algorithms to detect hidden and ignored threats and gain improved visibility into containers.
Syxsense: Syxsense Zero Trust
The new application advertises improvements over traditional endpoint products with the ability to evaluate device health, ensure granular policy compliance, and automate risk compliance, according to Syxsense. Tidal Cyber: Community Edition
Key capabilities include: adversary behaviour search designed to let security analysts rapidly investigate ATT&CK (adversarial tactics, techniques, and common knowledge) threat elements; a product registry, listing vendor-provided security product capabilities that can be used against specific adversary behaviours.
Link: https://www.channelasia.tech/article/700676/top-cyber-security-products-unveiled-black-hat-2022/?fp=2&fpid=1