Notifies you of security threats, malware and breaches inside your network to prevent intrusions, attacks, data leaks, and espionage
Group-IB TDS (Threat Detection System) is an intrusion detection and prevention tool to protect your network. It is a unique product by Group-IB, born out of our incident response expertise, skills in detecting malware and threat intelligence foundation.
As a component of Group-IB’s early warning system TDS benefits from other products, which contribute to its effectiveness. Group-IB’s SOC team is there for you 24/7 to prevent and remedy any network threats and breaches. Advanced persistent threat detection lowers cyber threats to your organization and ensure your network is protected from the most advanced cyber threats and threat actors.
Advanced threat detection in your network to shield it against:
Polygon, Group-IB’s sandboxing technology, embraces machine learning and advanced data analysis techniques to handle and rate cyber security incidents.
A physical network sensor, TDS employs deep packet inspection technology to identify network threats and detect malware. Regular automated updates of signatures, filter rules, and intelligence feeds guarantee that TDS stands guard “at the door” to your network. Signature data is transmitted about detected incidents to Group-IB’s cloud through a secure channel where Group-IB specialists carefully analyze all suspicious events.
Sandboxing technology Polygon can be delivered as physical equipment or cloud-based. After a file is extracted by TDS, Polygon launches it in an isolated environment to classify and rate its cyber threat level.
SOC captures and breaks down all information security events, identified as able to disrupt the operation of your network. Following the analysis by Group-IB experts, incidents are ranked by type and severity.
TDS is a physical network sensor with a DPI solution installed for analysis of all inbound and outbound packages. A set of signatures, “black lists” of botnets, as well as filtering rules are automatically updated. Signature data is transmitted about detected incidents to Group-IB’s cloud through a secure channel where Group-IB specialists carefully analyze all suspicious events.
Polygon launches suspicious files identified by the TDS sensor in an isolated environment in order to analyze the behavior of the file and make a conclusion on the level of the danger to the network.
A standard procedure is in place to send data on registered events related to information security incidents to any SIEM or log storage system with the use of syslog.
Group-IB is one of the global leaders in preventing and investigating high-tech crimes and online fraud. Since 2003, the company has been active in the field of computer forensics and information security, protecting the largest international companies against financial losses and reputation risks.
We are recognized by Gartner, Forrester and IDC a as leading threat intelligence vendor with the ability to provide a unique insight to the threats originating from Russia and Eastern Europe. Group-IB is recommended by the Organization for Security and Co-operation in Europe (OSCE).
Group-IB’s experience and threat intelligence has been fused into an eco-system of highly sophisticated software and hardware solutions to monitor, identify and prevent cyber threats.Learn more
Group-IB’s security ecosystem provides comprehensive protection for your IT infrastructure based on our unique cyber intelligence and deep analysis of attacks and incident response.
Learn about threats, leakages, attacks, and hacking activity before they can harm your business
Detect malicious incidents in your internal network to prevent intrusions, attacks, data leaks, and espionage
Get the most of your antifraud systems and instantly protect all of your clients
Protect your customers and citizens with innovative solutions for e‑commerce & e‑government