Zerum Lynx™ is the intelligent Security Analytics solution designed to provide the vision you need to uncover and outsmart advanced cyber threats. It combines User & Entities Behavior Analytics (UEBA), Artificial Intelligence (AI) and deep network traffic analysis to identify insider and outsider threats in an accurate and simplified way.
Right now, your operation may be compromised by advanced threats that traditional signature-based tools are not able to detect. Zerum Lynx relies on machine learning based User & Entities Behavior Analytics (UEBA) to counter these threats, using its algorithms to understand your systems and users’ behavior and identify any security anomalies.
✓ Data exfiltration
✓ Network recon
✓ DDoS attacks
✓ Brute force attacks on applications
✓ File, code and command injection
✓ Access to malicious IPs and URLs
Zerum Lynx provides a contextualized view of suspicious behaviors, from isolated incidents to spreading kill chains, as they happen on your network, helping you to uncover, analyse and neutralize threats.
With machine learning based UEBA, the solution is able to automatically detect Advanced Persistent Threats (APT), new attack variations (Zero Day) and suspicious user behavior.
Incidents are notified through customizable alarms that greatly reduce noise and false positives, so your team can focus on real threats and work with more efficiency.
Zerum Lynx offers the traceability and Analytics tools you need to explore and investigate anomalous events in detail, simplifying the auditing and compliance of your security program.
Artificial Intelligence is a powerful weapon against advanced cyber threats, but it depends on data to be really effective. That’s where Wire Data comes in. Zerum Lynx offers an innovative take on Security Analytics by using Wire Data, an extremely rich and unique data source, to feed its machine learning algorithms and generate critical security insights. It captures and decodes information from critical protocols, and offers features like Deep Packet Inspection (DPI) and TLS/SSL decryption to ensure you get most intel out of your network.
Get security insights from key network protocols:
✓ SMB ✓ DNS ✓ LDAP ✓ Oracle ✓ MySQL ✓ PostgreSQL ✓ DB2 ✓ HTTP
And many others.
Plug and Play
Deploy the solution and start analysing security events without delay, complexity and operational downtime.
Zerum Lynx relies on ZML™ – Zerum Machine Learning, our Artificial Intelligence and Machine Learning set of technologies.
Expand Zerum Lynx™ capture and storage capacity according to your needs, in a simplified way.
Zerum Lynx can be adjusted to your organization’s real needs to provide better results generation.
The Solution offers the possibility of integration with Security Information and Event Management (SIEM) on demand.
Data Lake Integration
Connect Zerum Lynx to our big data platform, Zerum Titan, or another data lake of choice to expand your security intelligence.
With Webroot® Threat Intelligence integrated to Zerum Lynx, your organization has access to additional services such as global threat detection and malicious URL and IP listings. Combining these services and Zerum Lynx’s own enrichment features, you have an even more detailed view over your security.
Webroot® is a registered trademark of Webroot Inc. All rights reserved.