SOLUTIONS

Managed Detection and Response ➔

Our MDR provides end-to-end attack surface coverage, proactive threat hunting and Incident Response.

Compromise Assessment ➔

Learn what is happening in your network right now, and get full assurance you are not compromised.

SIEM as a Service ➔

Get superior visibility and threat detection with our cloud SIEM/XDR platform, with the full service operational in minutes.

Incident Response ➔

Get expert support through the whole incident response lifecycle.

HOW IT WORKS

XDR Platform ➔

Get deep visibility across endpoint, network, cloud and your digital supply chain.

td_CLOUD ➔

Continuous cloud assurance, configuration and posture management.

td_ENDPOINT ➔

Detect and respond to the most sophisticated endpoint threats.

td_NETWORK➔

Always-on network monitoring for advanced threats and suspicious behaviour.

PARTNERS

SOC for MSP’s ➔

Start providing advanced 24×7 cyber security services to your customers tomorrow.

Become a Partner ➔

Our partner program helps you start immediately and provides full support with technology, customer on-boarding, sales and marketing, as well as personalised training and reporting.

COMPANY

Who We Are ➔

ThreatDefence is the only Australian vendor providing innovative MDR, SOC-as-a-Service, and proactive cyber defence solutions to MSPs and Enterprises.

Careers ➔

We are looking for the best. Join our team, grow quickly, and become part our global success.

News ➔

Learn more from our latest news.

Case Studies ➔

Learn what our customers say about us.

Contact Us ➔

Our cyber security experts are ready to help. Contact us and get your answers today.

ThreatDefence Network

Managed Network Detection and Response for your data centre, WAN and branch networks.

24x7-Inspection-1
24x7 Inspection
Ongoing, real-time monitoring and detection via advanced analytics and machine learning.
Threat-Intelligence-1
Detect the Most Elusive Threats
Advanced detection capabilities and rich threat intelligence leave no opportunities for attackers.
Threat-Hunting
Threat Hunt Like a Pro
Retrieves data from all sources in a single view, and follow attackers as they move laterally, visualizing the entire extent of the attack.
Consolidated-Respons
Consolidated Response
When a threat is detected, we activate our investigation and response capabilities across all parts of the environment, be it a network, endpoint, or cloud.

Network Visibility Challenge

 While most security tools focus on endpoint and perimeter threat detection, internal network visibility is one of the best security tools employed by the most experienced threat hunters.

Lateral movement, rogue devices, shadow IT, password brute-forcing, and many other threats can only be reliably detected on the network level. Network visibility brings your security operations to the next level. Every network packet sent by an attacker can be analysed and recorded.

How ThreatDefence NETWORK Helps?

td_NETWORK is a real-time managed network detection and response solution that can be deployed to monitor inline network traffic on-premises or in-cloud, inspecting horizontal and vertical traffic flows in physical and virtual networks.

td_NETWORK brings automated and integrated threat intelligence and expert human security-analyst threat hunting to your network to provide superior threat detection and response capabilities, leaving no risk undetected. td_NETWORK detects even the most concealed activities and utilises our machine learning technologies to identify unknown threats, lateral movement, and malicious insider behaviour.

Lateral movement.
Command & control traffic.
Backdoors and tunnels.
Malware and botnet connections.
Internal port scanning and reconnaissance.
Password brute-forcing.
Insider threats.
Impersonation and spoofing attacks.
Exploitation attempts.
Unauthorised remote access tools.
Rogue devices.

How it Works

td_NETWORK integrates into your network segments and inspects both inbound and outbound traffic in your environment in real-time. The sensor appliances can tap into your branch offices, WAN segments and cloud networks.

The collected data is transitioned to our XDR platform and correlated with other information collected from endpoints, applications, system logs, and public cloud instances. Within our rich threat intelligence ecosystem, threat indicators are transformed into the entire attack kill chain, and all attack stages, as seen in various parts of the environment, are identified.

Deep Network Visibility

Forensic-Captures
Forensic Captures
Detailed recording of network metadata and complete packet-level communications for investigations and forensic evidence gathering.
Darkweb-Monitoring
User Behaviour
_NETWORK analyses user and machine behaviour and provides insights based on detected deviations and anomalies.
Darkweb-Monitoring-1
Network Baseline
Get complete visibility into your network and see who is communicating to create a comprehensive baseline for all internal and external connections.

Threat Detection and Response

24x7-Detection-and-Response
24x7 Detection and Response
Automated and human-powered detection, threat hunting, and immediate threat response.
Darkweb-Monitoring-2
Threat Intelligence
Detection is supported by our threat intelligence data, distributed to all _NETWORK sensors in real time.
Darkweb-Monitoring-3
Automated Response
The detected threats can be immediately disrupted, at the network perimeter level or as a tactical within-the-network containment measure.

Ongoing Assurance

Consolidated-Respons (1)
Security Policy Assurance
Ongoing assurance of your security posture with continuous network inspection and detection, identifying policy violations such as the use of unencrypted services, plain-text passwords, and shadow IT assets.
Automated-Detection
Risk Identification
All Collected data is translated into an organization-level risk report, with a detailed security scorecard for all components of your environment.
Darkweb-Monitoring-4
Real-Time Visualisations
Access real-time reporting and visualisations in your Customer Portal instance, constructing the whole enterprise scorecard in one click.

Full Enterprise Attack Surface Coverage

Our Network solution is supplied as an integral part of our XDR platform and can be complemented by our 24×7 SOC/MDR services.

Our XDR platform provides full enterprise coverage, integrating all the security data you can reach into, including data that directly resides within your network and on your endpoints, as well as the external data such as cloud workloads, SaaS applications, Dark Web breaches, compromised credentials, external vulnerabilities, and weaknesses and exposures related to third-party organisations in your supply chain.

ENDPOINT
_ENDPOINT
Advanced endpoint visibility, forensic analysis of endpoint telemetry, detection and response
Network
_NETWORK
Detect insider threat and lateral movement with network-based intrusion detection and packet analysis
CLOUD
_CLOUD
Multi-cloud security insights, cloud workload vulnerability management and continuous risk assessment
OSINT
_OSINT
Continuously integrated Open Source Intelligence, including indicators from Dark Web, Social media, and third-party vulnerabilities
ANYTHING
_ANYTHING
Any standard or custom application or log source, completely integrated into the platform

Protect Your Organisation With ThreatDefence

Get In Touch
Linkedin Twitter
Solutions
How It Works
Partners
Company
  • 1300 122 434
  • team@threatdefence.com
Linkedin Twitter

© 2021 ThreatDefence Pty Ltd All Rights Reserved | Privacy Policy | Terms Of Service