DomainTools Leverages Splunk to Help Deliver Automated and Continuous Response, Optimize
Analytics-Driven Security and Improve Operational Efficiency
SEATTLE and ORLANDO, Sept. 28, 2016 /PRNewswire/ -- .conf2016 -- DomainTools, the leader in domain name and DNS-based cyber threat intelligence, and Splunk Inc., provider of the leading software platform for real-time Operational Intelligence, today announced that DomainTools has joined the Splunk's Adaptive Response Initiative. Powered by a growing list of leading cybersecurity technology vendors, Adaptive Response is a best-of-breed security initiative that leverages end-to-end context and continuous response to help organizations improve security operations with an adaptive security architecture. The announcement was made at .conf2016: Splunk's 7th Annual Conference.
Following its unveiling at RSA Conference 2016, the Adaptive Response Initiative now includes more than 20 participating vendors. With this extensive network, organizations can use Splunk Adaptive Response to further interact with data, extract and share new insights, gather more context and invoke actions across key security and IT domains. Ultimately, this enables customers to detect threats faster, make analytics-driven decisions and improve operational efficiencies within their Security Operations Center (SOC).
"DNS and proxy logs provide a wealth of information for a security analyst to triage, investigate, and mitigate threats, especially around domain names, but most organizations struggle to realize the value those logs could provide," said Tim Chen, CEO, DomainTools. "By combining the Splunk® Enterprise Security platform with DomainTools context on domain names active in their network, we help security professionals around the world gather more context to detect threats quicker and deliver a more automated and continuous response against advanced attackers."
While many organizations employ a layered, multi-vendor approach to security, most individual solutions are not designed to work together outside of the box. Splunk Enterprise Security, working in conjunction with technologies like DomainTools, works as the nerve center for security and extends analytics-driven decision-making – improving detection, investigation and remediation times, information sharing and response.
"We created the Adaptive Response Initiative to enable organizations to efficiently combat advanced attacks while utilizing their existing security architectures. Members like DomainTools are key to the success of Adaptive Response," said Haiyan Song, senior vice president of security markets, Splunk. "Together we will help solve this very challenging problem facing every enterprise."
DomainTools helps security analysts turn threat data into threat intelligence. We take indicators from your network, including domains and IPs, and connect them with nearly every active domain on the Internet. Those connections inform risk assessments, help profile attackers, guide online fraud investigations, and map cyber activity to attacker infrastructure. Fortune 1000 companies, global government agencies, and leading security solution vendors use the DomainTools platform as a critical ingredient in their threat investigation and mitigation work. Learn more about how to connect the dots on malicious activity at http://www.domaintools.com or follow us on Twitter:@domaintools