How Does Cisco Secure Endpoint / AMP Work?

preview_player
Показать описание
A short video explaining how Secure Endpoint works (previously known as AMP).
A little bit of stutter as I try to explain this technology to my manager! But hey made it to the end.
  1. Hamza
Рекомендации по теме
Cisco Secure Endpoint 0:04:28

Cisco Secure Endpoint Overview

Cisco Secure Endpoint 0:01:38

Cisco Secure Endpoint Explainer Video

How Does Cisco 0:04:53

How Does Cisco Secure Endpoint / AMP Work?

Simplified Endpoint Security​ 0:00:55

Simplified Endpoint Security​ | Cisco Secure Endpoint

Increase Visibility to 0:00:58

Increase Visibility to Threats on Endpoints​ | Cisco Secure Endpoint

Cisco Secure Endpoint- 0:11:43

Cisco Secure Endpoint- brief overview with two demos

Detect Threats Faster​ 0:01:08

Detect Threats Faster​ | Cisco Secure Endpoint

Cisco Secure Endpoint 0:03:23

Cisco Secure Endpoint and Umbrella Use Cases Part 1

Cisco Secure Endpoint 0:13:25

Cisco Secure Endpoint Pro Overview and Demo

Cisco Secure Endpoint 0:12:40

Cisco Secure Endpoint

Intro to Orbital, 0:08:52

Intro to Orbital, a New Endpoint Security Evolution

Cisco Secure Endpoint: 0:03:43

Cisco Secure Endpoint: Inbox and Events

Cisco Endpoint Security: 0:00:25

Cisco Endpoint Security: How (24s)

Cisco Secure Endpoint 0:02:27

Cisco Secure Endpoint Explained in Less Than 3 Minutes

Cisco Secure Endpoint 0:01:35

Cisco Secure Endpoint Reporting

Cisco Secure Endpoint 0:01:57

Cisco Secure Endpoint – Standalone Example

Cisco Secure Endpoint 0:02:31

Cisco Secure Endpoint - Using Orbital to Detect Log4j Vulnerabilities

Cisco Secure Endpoint 0:08:41

Cisco Secure Endpoint Ransomware Series - Maximize Your Security Operations

Accelerate Incident Response 0:01:12

Accelerate Incident Response and Remediation​ | Cisco Secure Endpoint

Get more and 0:02:21

Get more and do more with Secure Endpoint Advantage Package

Cisco Endpoint Security: 0:00:16

Cisco Endpoint Security: How

Cisco Secure Endpoint 0:02:03

Cisco Secure Endpoint - Protected Application Access

Integrate ISE with 0:06:57

Integrate ISE with Cisco Secure Endpoint (Formerly AMP for Endpoints)

Cisco Endpoint Security: 0:00:20

Cisco Endpoint Security: Problem Solved (19s)

Комментарии
Автор

Some additional detail RE the operation of the AMP cloud, once the connector is installed on the endpoint : when a file is moved, copied or executed a SHA-256 hash is calculated and sent to this AMP cloud for the file verdict. If the file is unknown & the AMP connector is configured to send the whole file to AMP cloud, it will also send it to TG for analysis as you saw in the video.

CyberTronics
Автор

ThreatGrid: when TG updates verdict in AMP cloud, the AMP cloud component informs all components that have seen the file previously through the retrospective event. So if you are a user or AMP, you are inadvertently helping anyone else who uses AMP!

CyberTronics