ExtraHop has integrated CrowdStrike Falcon endpoint protection capabilities into its Reveal(x) network detection and response platform, according to a prepared statement. In doing so, ExtraHop enables security teams to use Reveal(x) and Falcon to guard against cyberattacks across networks and endpoints.
Reveal(x) and Falcon together deliver edge visibility, machine learning behavioral threat detection and real-time decryption of SSL/TLS sessions, ExtraHop noted. As such, security teams can use the Reveal(x)-Falcon integration to identify cyber threats and limit their impact.
The Reveal(x)-Falcon integration also automates device discovery and classification, ExtraHop indicated. Security teams can use the integration to update and maintain a list of devices impacted by cyber threats and receive notifications about newly connected and potentially compromised devices.
A Closer Look at Reveal(x) and Falcon
Reveal(x) automatically discovers and classifies every transaction, session, device and asset in an organization at up to 100Gbps, according to ExtraHop. It uses machine-learning based behaviors, rules and triggers to detect cyber threats and validates and remediates cyberattacks.
Falcon is a cloud-native endpoint protection platform that uses AI and big data to provide insights across the threat lifecycle, CrowdStrike indicated. The platform is built on a single agent and leverages crowdsourced data and cloud analytics to help organizations mitigate cyber threats.
MSSPs Embrace Falcon for Endpoint Protection
Along with ExtraHop, MSSPs are increasingly using Falcon for endpoint protection, and CrowdStrike has attributed some of its recent success to its channel partners.
CrowdStrike reported total revenue of $178.1 million in the first quarter of fiscal 2020, which represented an 85 percent year-over-year increase. Furthermore, the company launched the CrowdStrike Developer Portal during the quarter to encourage MSSPs and other channel partners to leverage its APIs to build applications and integrations.