FTK Connect

Call for Price

Kick off a post-breach investigation from the first moments after an intrusion has been detected.

Category:

Description

FTK Connect enables corporations and law enforcement agencies to easily automate and accelerate key processes and tasks within forensic DFIR investigations. With its dramatically simplified drag and drop interface, users can create powerful time and money saving automations.

Integrate with industry-leading intrusion detection software to automate the immediate preservation of evidence from the first moments an incident is detected. Forensically collect data from in network and off-network endpoints, based on triggers or a schedule. Automate tasks like case creation and evidence processing, then automate next steps such as searching and labeling results, exporting data, and more – all without any user interaction. Let FTK Connect handle the mundane tasks, saving investigators’ time for what they do best: forensic analysis and review.

Features & Capabilities

Easily Create Automated Workflows

Automate time-intensive manual processes within forensic and incident response workflows with our full-featured API. The intuitive drag-and-drop interface allows non-programmers to be instantly productive.

Instantly Preserve Electronic Evidence

Unite SIEM and SOAR platforms with Forensic Tools to investigate the root cause of a data breach and save precious time in the initial stages of incident response. Automate collection from remote endpoints based on triggers from solutions like Splunk SOAR and Palo Alto SOAR to instantly preserve electronic evidence upon detection of an intrusion.

Automate Notifications

Keep users informed of case progress with automated processing status updates that notify reviewers via text message or email. Allow forensic examiners to stay productive and focused while processing jobs continue to run in the background.

Automate Evidence Processing & Review

Configure FTK Connect to watch directories and automatically process any forensic image placed there, then automatically search cases for preconfigured search terms, apply labels or bookmarks, and export the resulting files. Law enforcement agencies utilizing FTK® Lab or FTK® Central with FTK Connect will be able to close more cases in less time.

Create Custom Automation Workflows

Leverage the FTK Connect API to build your own workflows or integrations that fit your exact needs and specifications. The API uses the Representational State Transfer (REST) architecture to access and manipulate data based on uniform and predefined operations.

Leverage Existing Hardware & Software

Let FTK Connect bring unrivaled speed, power, and security to your existing hardware and software investments. FTK Connect integrates seamlessly with FTK® Lab, FTK® Enterprise, and FTK® Central.

Reviews

There are no reviews yet.

Be the first to review “FTK Connect”

Your email address will not be published. Required fields are marked *

Related products