• The Platform

    ExtraHop Reveal(x)

    Cloud-native visibility, detection, and
    response for the hybrid enterprise.

    Reveal(x) 360

    SaaS-based network detection
    and response.

    Learn More

    How It Works

    Reveal(x) Enterprise

    Self-managed network detection
    and response.

    Learn More

    How It Works

  • For Security

    For Security

    Protect and scale your business with complete visibility, real-time threat detections, and intelligent response.

    Use Cases

    • Comprehensive Inventory of All Devices
    • Detect Lateral Movement
    • Monitor Sensitive Data Movements
    • Respond to Alerts That Matter
    • Simple, Streamlined Threat Hunting
    • Next Generation Intrusion Detection System
    • See All Use Cases

    Security Resources

    • 2020 Gartner Market Guide for Network Detection and Response
    • 2020 SANS Network Visibility and Threat Detection Survey
    • Beginners' Guide to Network Detection and Response

    See All Resources

    Enterprise-Ready Integrations

    Crowdstrike Logo

    Detect network threats and automatically quarantine impacted devices.

    Read More...

    See All Integrations

    Featured Customer Story

    Ulta Beauty Logo

    ULTA Beauty Securely Scales High-Growth e-Commerce Operation in the Cloud with ExtraHop

    Read More...

    See All Customer Stories

  • For Cloud

    For Cloud

    Secure rapid cloud adoption and maintain control of applications, workloads, and data in cloud or multi-cloud environments.

    Use Cases

    • Monitor Critical Cloud Workloads
    • Detect Supply Chain Attacks
    • Cloud Detection and Response
    • Respond to Alerts That Matter
    • Security for AWS
    • Security for Azure
    • Security for Google Cloud
    • See All Use Cases

    Cloud Resources

    • Using MITRE ATT&CK In Cloud and Hybrid Environments
    • Multi-Cloud Security: Removing Friction from the Development Process

    See All Resources

    Enterprise-Ready Integrations

    Amazon Web Services Logo

    Unified cloud security and monitoring with AWS and ExtraHop.

    Read More...

    See All Integrations

    Featured Customer Story

    Wizards of the Coast Logo

    Wizards of the Coast Delivers Frictionless Security for Agile Game Development with ExtraHop

    Read More...

    See All Customer Stories

  • For IT Ops

    For IT Ops

    Boost NOC/SOC collaboration and ensure availability and performance across your hybrid enterprise.

    Use Cases

    • Resolve Performance Issues
    • Support Distributed Workers
    • Reliably Scale to the Cloud
    • NetOps and SecOps Collaboration
    • See All Use Cases

    IT Ops Resources

    • 451: Digital Experiences Are Front and Center In Coping with Coronavirus
    • Office Shutdown: Securing an Increased Remote Workforce

    See All Resources

    Enterprise-Ready Integrations

    ServiceNow Logo

    Know and do more, faster. ExtraHop + ServiceNow makes IT service management even more seamless.

    Read More...

    See All Integrations

    Featured Customer Story

    The Home Depot Logo

    The Home Depot Builds Unified Customer Experience with Visibility from ExtraHop

    Read More...

    See All Customer Stories

  • Blog
  • More
    • Customers
    • Partners
    • Resources
    • About Us
    • Support
    • Support Overview
    • Documentation
    • Hardware Policies
    • Services
    • Services Overview
    • ExtraHop Reveal(x) Advisor
    • Deployment
    • Training
    • Training Overview
    • Training Sessions
    • Community
    • Customer Portal Login
    • Solution Bundles Gallery
    • Community Forums
    • Customer Stories

    Partners

    • Panorama Partner Program
    • Overwatch Managed NDR
    • Technology Integration Partners
    • Partner Portal Login
    • Become a Partner

    Resources

    • Customer Stories
    • Remote Access Resource Hub
    • All Resources
    • White Papers
    • Datasheets
    • Industry Reports
    • Webinars
    • Network Attack Library
    • Protocol Library
    • Documentation
    • Firmware
    • Training Videos
    • About ExtraHop
    • About Us
    • The ExtraHop Difference
    • What Is Cloud-Native?
    • Leadership
    • Board of Directors
    • Careers
    • Careers Overview
    • Search Openings
    • News
    • Newsroom
    • Press Releases
    • ExtraHop in the News
    • Engage with Us
    • Contact Us
    • Upcoming Webinars and Events
    • Take the Live Demo

    Ulta Beauty

    ULTA Beauty Securely Scales High-Growth e-Commerce Operation in the Cloud with ExtraHop

    Read More...

    Crowdstrike

    Detect network threats and automatically quarantine impacted devices. Inventory devices not yet protected by endpoint security.

    Read More...

    2020 Gartner Market Guide for Network Detection and Response

    ExtraHop is a representative vendor two years running. Learn why.

    Read More...

    Newsroom

    Get the latest news and information about ExtraHop, including press releases and third-party coverage.

    Read More...

X button
Login
Logout
Start Demo

The Platform

For Security

For Cloud

For IT Ops

Blog

More

Start the Democaret-right

Contact Uscaret-right

caret-left Back

ExtraHop Reveal(x)

Cloud-native visibility, detection, and
response for the hybrid enterprise.

Reveal(x) 360

SaaS-based network detection
and response.

Learn More

How It Workscaret-right

Reveal(x) Enterprise

Self-managed network detection
and response.

Learn More

How It Workscaret-right

caret-left Back

For Security

Protect and scale your business with complete visibility, real-time threat detections, and intelligent response.

Learn More

Comprehensive Inventory of All Devices

Detect Lateral Movement

Monitor Sensitive Data Movements

Respond to Alerts That Matter

Simple, Streamlined Threat Hunting

Next Generation Intrusion Detection System

caret-left Back

For Cloud

Secure rapid cloud adoption and maintain control of applications, workloads, and data in cloud or multi-cloud environments.

Learn More

Monitor Critical Cloud Workloads

Detect Supply Chain Attacks

Cloud Detection and Response

Respond to Alerts That Matter

Security for AWS

Security for Azure

Security for Google Cloud

caret-left Back

For IT Ops

Boost NOC/SOC collaboration and ensure availability and performance across your hybrid enterprise.

Learn More

Resolve Performance Issues

Support Distributed Workers

Reliably Scale to the Cloud

NetOps and SecOps Collaboration

caret-left Back

Blog

Learn More
caret-left Back

Customers

Partners

Resources

About Us

caret-left Back

Customers

Customer resources, training,
case studies, and more.

Visit Customer Portal

Support

Professional Services

Training

Solution Bundles Gallery

Community Forums

caret-left Back

Partners

Partner resources and information about our channel and technology partners.

Visit Partner Portal

Panorama Partner Program

Overwatch Managed NDR

Technology Integration Partners

Become a Partner

caret-left Back

Resources

Find white papers, reports, datasheets, and more by exploring our full resource archive.

All Resources

Customer Stories

Network Attack Library

Protocol Library

Documentation

Firmware

Training Videos

caret-left Back

About Us

See what sets ExtraHop apart, from our innovative approach to our corporate culture.

Learn More

The ExtraHop Difference

What Is Cloud-Native?

Careers

Newsroom

Upcoming Webinars and Events

How to Detect and Respond to the Sunburst Attack Security Alert: Detecting CVE-2020-1472 Zerologon Vulnerability Exploitation with NDR NDR vs XDR: Network Detection and Response vs Extended Detection and Response

Blog

How to Detect and Respond to the SUNBURST Attack

  • ExtraHop
  • December 14, 2020

Security Alert: Detecting CVE-2020-1472 Zerologon Exploitation with NDR

  • Jeff Costlow
  • September 16, 2020

Network Detection and Response (NDR) Vs. Extended Detection & Response (XDR)

  • Jesse Munos
  • August 7, 2020

Security Alert: Detecting CVE-2020-1472 Zerologon Exploitation with NDR


Network Detection and Response (NDR) Vs. Extended Detection & Response (XDR)


How to Detect and Respond to the SUNBURST Attack

  • All Posts
  • Security
  • Cloud
  • Tech
  • Community
  • Trending
  • Security Alerts
  • NDR
  • Security Frameworks
  • Decryption
  • Industry Trends

2.26.21

Talking to the Board About the New Realities of IT Security

Between the recent shifts in remote access and headlines filled with high-profile cyber attacks, getting board approval has some increasing challenges. Get tips for talking to the board of directors about security.

Sri Sundaralingam

Read On

2.25.21

Managed Services: Augment or Outsource Security Resources

The increasing challenge of securing your organization drives home the need for security offerings that can provide needed coverage within a workable budget. Learn how managed security services can help.

Stacie Corcoran

Read On

2.19.21

Where Does NDR Stand in the 2020 Gartner Hype Cycle for Security Operations?

The 2020 Gartner Hype Cycle for Security Operations shows NDR well past the Peak of Inflated Expectations, and drawing near to the Slope of Enlightenment. Read the blog to learn more.

Chase Snyder

Read On

2.18.21

SANS: A New Take on Cloud Shared Responsibility

There is more nuance to the shared responsibility model than you may realize. Get the latest on who's responsible for what, as well as security controls and services essential for securing your cloud assets.

Dale Norris

Read On

2.12.21

Behavior-Based Detection and Rule-Based Detection: Why Not Both?

Learn how ExtraHop Reveal(x) detects threats via the network by combining behavior-based detection and rule-based detection to provide a covert defense against advanced threats.

Chase Snyder

Read On

2.12.21

ExtraHop's CRN Channel Chiefs on Building Opportunities for Partners

Read a Q+A with ExtraHop's two CRN Channel Chiefs, Mark Fitzmaurice, Vice President of Worldwide Channel Sales, and Todd Debell, Director of Channels for the Americas.

Carol Caley

Read On

2.11.21

New Report on Lessons Learned Observing SUNBURST's Behavior

Get ExtraHop's latest report exploring how SUNBURST's behavior evaded defenses and what we can do going forward.

Carol Caley

Read On

2.9.21

What the Stock Market Looks Like on the Network

The last week of January 2021 was an eventful week for the stock market, to say the least. In the midst of the mayhem, one of our expert trainers did a virtual training with the retail arm of a large bank, where they saw some unusual network activity.

Katie Lockett

Read On

2.4.21

Act Two: The Vendor Responds

The second installment of our story about investigating some very strange behavior happening on the network.

Cal Jewell

Read On

2.4.21

When You Detect Network Enumeration: A Real-World Example in Two Acts

A network enumeration detection sends a group of security professionals down a rabbithole. Read the blog to follow along as they investigate some very strange behavior happening on the network.

Cal Jewell

Read On

1.29.21

SANS 2020 Cloud Security Report

Gain valuable insight into the tooling and migration trends to watch today and in the future with the newest report from the SANS Institute.

Dale Norris

Read On

1.26.21

SANS Review: Taking on Modern Threats

In this SANS review of ExtraHop Reveal(x) network detection and response, Dave Shackleford discusses why network truth combined with sophisticated machine learning count for a lot in security. Intuitive design and usability take a solution to the next level.

Carol Caley

Read On

1.20.21

Sunburst Origin Story Part 2: A Forensic Examination of SUNBURST After Detection

The SolarWinds Orion SUNBURST supply chain attack has rocked the confidence of many security teams across industries. This blog reconstructs the timeline of the attack and provides insights on how to improve threat detection in the future.

Todd Kemmerling

Read On

1.14.21

What's the State of Hybrid and Cloud Security Tools?

Understand the current state of cybersecurity tooling from security and IT pros who shared their insights in our newest must-have report.

Dale Norris

Read On

1.9.21

Professional Services Customer Success Stories: Streamlining an IT Merger

Hear how ExtraHop Professional Services helped streamline a stubborn IT merger.

Walter Phillips

Read On

1.7.21

Free Learning Path: The Keys to Cryptography

We've unlocked our cryptography learning path, making it free and available to everyone. Learn the basics of encryption, decryption, secure connections, and how to interpret key security data.

Kurt Shubert

Read On

1.7.21

SUNBURST: Why Supply Chain Attacks Are So Destructive

Why was the SUNBURST supply chain attack so destructive? In this blog, ExtraHop identifies common elements of a supply chain attack and how to stop these attacks in the early stages.

Dan Frey

Read On

1.6.21

SUNBURST: An Origin Story

Get a forensic examination of the Sunburst attack from ExtraHop and learn how the attack went undetected for so long.

Todd Kemmerling

Read On

12.21.20

Grand Canyon Education Masters Security and Performance With ExtraHop Reveal(x)

Grand Canyon Education turned to ExtraHop Reveal(x) network detection and response (NDR) to help them bridge visibility gaps to optimize security and performance.

Katie Lockett

Read On

12.21.20

Video: How to Use NDR to Detect Malware Threats Like SUNBURST

Video from ExtraHop: What we have learned about how the attack works and how NDR is essential to detect threats such as the SUNBURST malware.

ExtraHop

Read On
Next

+

ExtraHop uses cookies to improve your online experience. By using this website, you consent to the use of cookies. Learn More

Global Headquarters
520 Pike St
Suite 1600
Seattle, WA 98101
United States


EMEA Headquarters
WeWork 8
Devonshire Square
London EC2M 4PL
United Kingdom

APAC Headquarters
3 Temasek Avenue
Centennial Tower
Level 18
Singapore 039190

Platform

  • Reveal(x) 360
  • Reveal(x) Enterprise

Security

  • Comprehensive Inventory of All Devices
  • Detect Lateral Movement
  • Monitor Sensitive Data Movements
  • Respond to Alerts That Matter
  • Simple, Streamlined Threat Hunting
  • Next Generation Intrusion Detection System

Cloud

  • Monitor Critical Cloud Workloads
  • Detect Supply Chain Attacks
  • Cloud Detection and Response
  • Respond to Alerts That Matter
  • Security for AWS
  • Security for Azure
  • Security for Google Cloud

IT Ops

  • Resolve Performance Issues
  • Support Distributed Workers
  • Reliably Scale to the Cloud
  • NetOps and SecOps Collaboration

Blog

More

  • Customers
  • Partners
  • Resources
  • About Us
  • Careers
  • Newsroom
  • Contact Us
  • Copyright ExtraHop Networks 2021
  • Terms of Use
  • Privacy Policy
  • Facebook
  • Twitter
  • LinkedIn
  • Instagram
  • YouTube