StealthINTERCEPT 5.0 is Here!

Monitor and Prevent Threats in Real-Time

Request A Free Trial

Powered by ChronoForms - ChronoEngine.com

Active Directory is secure when it’s clean, understood, configured properly, monitored closely, and controlled tightly. StealthINTERCEPT has been very successful at providing organizations the operational and security intelligence necessary to achieve these goals.

StealthINTERCEPT 5.0 builds on this foundation to help thwart critical elements of credential theft attacks by limiting exposure of privileged credentials across multiple threat vectors. From Enterprise Password Enforcement to LSASS Guardian - DCSync protection to enforcement of ESAE Administrative Forest Designs, StealthINTERCEPT 5.0 combines cutting-edge enhancements and enforcement of recommended practices to elevate Active Directory security.

Some highlights of the new release include:

StealthINTERCEPT - Credential Stuffing & Unauthorized Password Use Prevention

StealthINTERCEPT Password Enforcer

Attackers often use dictionaries of previously breached passwords or knowledge of well-known passwords to compromise accounts. The newly introduced StealthINTERCEPT Enterprise Password Enforcer proactively prevents the usage of these weak and compromised passwords from being used – regardless of whether or not they meet complexity requirements – further enforcing password hygiene and reducing the opportunity for attackers to crack or guess passwords in automated or manual fashions.

StealthINTERCEPT - LSASS Guardian

LSASS Guardian

STEALTHbits LSASS Guardian is a new security feature designed to detect and prevent unauthorized code injection into the Local Security Authority Subsystem Service (LSASS) of Active Directory Domain Controllers.

Because Advanced Active Directory attacks like Skeleton Key malware allow an attacker to inject malicious code into the LSASS process, attackers now have the ability to authenticate as any user with a password of their choosing. LSASS Guardian effectively prevents unauthorized injection of code into the LSASS process, protecting Active Directory from total compromise.

StealthINTERCEPT - DCSync Detection & Prevention

DCSync Detection & Prevention

Attackers are increasingly improving their techniques to fly below the radar. Mimikatz DCSync, for example, allows an attacker to impersonate a Domain Controller to pull current and previous password hashes from a DC over the network without requiring interactive logons or gaining direct access to Active Directory’s database – the NTDS.dit file.

This enhancement to StealthINTERCEPT allows users to detect, prevent, and alert on malicious requests to a Domain Controller, allowing organizations to mitigate the threat of credential compromise using this method of attack.

StealthINTERCEPT - Graphical Analytics Reporting

Graphical Analytics Reporting

Graphical and visual reporting elements help to make report data more visually appealing and to enhance usability. StealthINTERCEPT now provides visual reporting of all analytic data as it occurs over time, with interactive point-and-click data exploration. These graphical reports allow for easy and smooth navigation throughout the information.

StealthINTERCEPT - Agent Update Enhancements

Agent Update Enhancements

The speed and ease in which patches can be deployed are often critical factors in security and operational response exercises. With the ability to now easily determine if updates are available via in-product messaging, and subsequently upgrade agents quickly when desired, StealthINTERCEPT users can expedite and streamline their StealthINTERCEPT patching processes.

Resources

StealthINTERCEPT® - Monitor and Prevent Threats in Real-Time

Data Sheet

Learn More

StealthINTERCEPT® - Enterprise Password Enforcer

Data Sheet

Learn More

Crypto Ransomeware Detection

Executive Brief

Learn More


Insider Threat Detection

Executive Brief

Learn More