The 2022 ATT&CK Evaluations for Managed Services Call for Participation is now open. Click here to learn how to participate.
Home  >  Enterprise  >  Participants  >  GoSecure  > Carbanak+FIN7 Configuration


GoSecure Configuration

The following product description and configuration information was provided by the vendor and has been included in its unedited form. Any MITRE Engenuity comments are included in italics.


Product Versions

Product Version: 5.8.6.104
Sensor Version: 5.8.6.65

Product Description

GoSecure Endpoint Detection and Response (EDR) utilizes both behavior-based detection capabilities along with real-time in-memory scanning to detect both known and unknown threats within an organization's environment. GoSecure EDR combines our patented Digital DNA technology with machine learning to have unparalleled insight into the code a process has loaded into memory. This unique approach allows GoSecure EDR to not only make real-time convictions on malware, but it also provides actionable context about what the process is capable of and what it might do in the future. GoSecure EDR also makes use of our proprietary behavior-based detection library, well suited (and continuously updated) to detect the various tactics, techniques, and procedures commonly used by advanced persistent threats.

Product Configuration

Sensor Profile: WindowsProfile-defaultA
Automated Response Policies: All policies enabled and set to alert only