A Ponemon Institute Study
Illusive's latest technology exposes and removes high-risk paths to critical systems
Dynamic environments create security gaps that attract attacks from inside and out…
See why Frost & Sullivan awarded Illusive’s Innovation Award for ‘uniquely different’ approach to deception technology.
Deception makes everything in our security stack better
CISO of a global financial enterprise
Partnerships are vital to our success. The customers we serve both need and expect security vendors to work effectively together.
Illusive integrates and complements core security systems – filling gaps in the kill chain, visualizing and removing hidden threats, speeding detection, prioritizing alerts, improving threat hunting efficiency, and more.
In each area, cooperation with associated vendors is critical to ensure a resilient security posture. We take this responsibility to heart in building strong, lasting relationships with key technology partners committed to alignment of technolgy, communication, and strategic direction.
BeyondTrust is the worldwide leader in Privileged Access Management, offering the most seamless approach to preventing privilege-related breaches. Our extensible platform empowers organizations to easily scale privilege security as threats evolve across endpoint, server, cloud, DevOps, and network device environments. BeyondTrust gives organizations the visibility and control they need to reduce risk, achieve compliance objectives, and boost operational performance. We are trusted by 20,000 customers and a global partner network.
Carbon Black (NASDAQ: CBLK) is a leader in cloud endpoint protection dedicated to keeping the world safe from cyberattacks. The CB Predictive Security Cloud® (PSC) consolidates endpoint protection and IT operations into an extensible cloud platform that prevents advanced threats, provides actionable insight and enables businesses of all sizes to simplify operations. By analyzing billions of security events per day across the globe, Carbon Black has key insights into attackers’ behaviors, enabling customers to detect, respond to and stop emerging attacks.
CyberArk provides a comprehensive solution for protecting, monitoring, detecting and responding to all privileged account activity for both non-human and human identities. Illusive integrates with CyberArk Application Access Manager to securely retrieve privileged credentials, secured and managed by CyberArk, to access hosts on the network for deceptions deployment and forensics collection. By integrating the CyberArk solution with Illusive, organizations benefit from the superior deception technology combined with the leading privileged accounts security solution.
LogRhythm is a world leader in NextGen SIEM, empowering thousands of enterprises on six continents to successfully reduce cyber and operational risk by rapidly detecting, responding to and neutralizing damaging cyberthreats. The LogRhythm NextGen SIEM Platform combines advanced security analytics; user and entity behavior analytics (UEBA); network detection and response (NDR); and security orchestration, automation and response (SOAR) in a single end-to-end solution. LogRhythm’s technology serves as the foundation for the world’s most modern enterprise security operations centers (SOCs), helping customers measurably secure their cloud, physical, and virtual infrastructures for both IT and and OT environments. Built for security professionals by security professionals, the LogRhythm NextGen SIEM Platform has won countless customer and industry accolades.
Splunk turns machine data into answers. Organizations of all sizes and across industries are using Splunk to unleash innovation and solve their toughest IT, security and business challenges. The integration between Illusive deception technology and Splunk SIEM and log management solutions allows Illusive to obtain rich data that enhances incident detection capabilities, data analysis and forensics collection. At the same time, Illusive feeds Splunk reliable, real-time threat information and generates high-fidelity attack alerts.
Illusive offers a range of pre-built integrations and enables CEF/Syslog integration with any SIEM. Illusive can also ingest incidents from any other source and collect real-time host forensics of the same depth provided for Illusive-generated incidents. All incident records are manageable through Illusive’s console, and can be viewed using the Illusive Forensics Timeline.
To integrate with any SIEM tool, Illusive sends data via the CEF/Syslog protocol.
QRadar® SIEM is a network security management platform that provides situational awareness and compliance support through the combination of flow-based network knowledge, security event correlation, and asset-based vulnerability assessment.
See detailed partnership description above.
Integrating Illusive with HP ArcSight log & event management solution creates a strong bi-directional relationship. Illusive feeds ArcSight reliable, real-time data such as incident reports and high fidelity alerts, while ArcSight makes its database available to Illusive so it may enrich its threat forensics. With this integration, customers benefit from a more complete, actionable perspective on activities in the system.
Eliminate APT attacks at the earliest possible stage by pairing Illusive’s high-fidelity detection with Cisco ISE & pxGrid’s mitigation capabilities. With this integration, users can define and execute automated mitigation sequences directly from the Illusive console, and automatically block attacks in real time.
Illusive supports seamless integration with all management solutions, including open source tools such as Puppet and Ansible, and proprietary tools such as the below:
Microsoft System Center Configuration Manager (SCCM) allows administrators to manage application deployment and security of devices across an enterprise. Illusive integrates with SCCM to deploy and monitor deceptions so customers can maintain a unified deployment architecture and use their own deployment tools policies.
The Tanium platform offers endpoint visibility and control across an entire organization. The integration between Tanium and Illusive allows the user to deploy and monitor deceptions using his existing endpoint management & deployment tool.
Illusive syncs with VirusTotal to pool their collective forensic resources. From this integration, users can capitalize on reports that analyze processes on hosts and identify sources of infiltration.
By pairing Illusive with OpenDNS, admins are notified when there’s an attempt to reach a malicious site or IP address, and receive Illusive’s real-time, source-based forensics.
Amazon Web Services (AWS) is the world’s most comprehensive and broadly adopted cloud platform, offering over 165 fully featured services from data centers globally. Millions of customers —including the fastest-growing startups, largest enterprises, and leading government agencies—trust AWS to power their infrastructure, become more agile, and lower costs.
© Copyright Illusive Networks, 2019. All Rights Reserved.
Upload your Resume* 2MB Max; .doc, .docx or .pdf only