Integrating Darktrace / NETWORK with FA&I

By integrating Darktrace / NETWORK and / Forensic Acquisition & Investigation, teams move beyond isolated alerts to an evidence-based understanding of attacks. When anomalous activity is identified at the network layer, an investigation is automatically initiated and enriched with forensic data collected from impacted systems via Darktrace / ENDPOINT or third-party EDR/XDR platforms.

Set-up instructions when using third-party EDR/XDR platforms: