Sophos Endpoint Detection & Response (EDR)

Endpoint Detection and Response: Scheduled Query Reports

With the release of the product, we'll be adding scheduled query reports. This feature is NOT YET available in the EAP but ...
Apr-21-2021

Endpoint Detection and Response: XDR Presentation

Karl Ackerman delivers this presentation on the new XDR feature in Sophos Central and its capabilities.
Apr-21-2021

Endpoint Detection and Response: XDR Email

In this video we show the EMAIL Attachment and URL table that is available in the data lake, we also pivot from a URL seen an a...
Apr-21-2021

Endpoint Detection and Response: Investigating a Malicious Process with Live Discover

Karl Ackerman goes over how to understand what a malicious process might be doing in the background on a device and how it can ...
Apr-21-2021

Endpoint Detection and Response: New Features in XDR [April 2021]

Covering the new features in XDR.
Apr-21-2021

Endpoint Detection & Response: Querying Hafnium with Sophos EDR

We'll go over how to utilize Sophos Live Discover to query your machines and see if there are any suspect web shells related to...
Mar-31-2021

HAFNIUM: Advice About the New Nation-State Attack

On March 2nd, zero-day vulnerabilities affecting Microsoft Exchange were publicly disclosed. These vulnerabilities are being ac...
Mar-10-2021

Sophos EDR & XDR: EDR Endpoint Schema and XDR Data Lake Schema

Overview of EDR endpoint Schema and XDR Data Lake Schema. For more information, see the following post: https://community.soph...
Feb-23-2021

Sophos XDR: EAP Launch Demo

Covers features available in the XDR Data Lake EAP starting Feb 22, 2021. For more information see the following Community pos...
Feb-22-2021

EDR 3.0 - Live Discover & Response: Generic Indicator of Compromise Hunting Query

Inspired by the US IRAN tensions in January, we wanted to build a query to search for the indicators of compromise exhibited by...
Feb-11-2021