Traditional EDR Tools
PolyLogyx Endpoint Platform
Data Collection & Customization
Real time event telemetry (file, process, network)
Critical OS state change
Single Endpoint Agent for Any Log Aggregation, Interrogation, Real-time Telemetry, and Response Action
Distributed data storage choices
Detection & Visualisation
In-box detection & matching (ex. MITRE attack framework, dashboards)
Simplified query language to contextualise events across types
Ability to take response to threats
Third Party Integrations
APIs for integration with SIEM/SOAR/Big Data Platforms
Multi-Customer SOC Operations
Multi-customer SOC APIs for investigations, forensics & hunting
Non-security use cases (ex. logs, device management)
"We pay nearly 50% of our revenue .... to endpoint platform vendors"
"Our technology supplier has become our competitor"
CTO, Tech Company
"We have too many consoles? Can you integrate into our multi-customer console"?
"'Response' is a defining element of MDR services"
“We have to log into each customer console sequentially for threat hunting or any investigation. Multi-customer Operations would be phenomenal”
"I can see that you are definitely on the right track"
"Kudos to ..@Polylogyx for interworking using @OASISopen #OpenC2 at #RSAC"
Founder, Tech Company
"a big step up from Sysmon"Anonymous
"It seems people are really excited about it [PolyLogyx extension]"