• The Platform

    ExtraHop Reveal(x)

    Cloud-native visibility, detection, and
    response for the hybrid enterprise.

    Reveal(x) 360

    SaaS-based network detection
    and response.

    Learn More

    How It Works

    Reveal(x) Enterprise

    Self-managed network detection
    and response.

    Learn More

    How It Works

  • For Security

    For Security

    Protect and scale your business with complete visibility, real-time threat detections, and intelligent response.

    Use Cases

    • Comprehensive Inventory of All Devices
    • Detect Lateral Movement
    • Monitor Sensitive Data Movements
    • Respond to Alerts That Matter
    • Simple, Streamlined Threat Hunting
    • Next Generation Intrusion Detection System
    • See All Use Cases

    Security Resources

    • 2020 Gartner Market Guide for Network Detection and Response
    • 2020 SANS Network Visibility and Threat Detection Survey
    • Beginners' Guide to Network Detection and Response

    See All Resources

    Enterprise-Ready Integrations

    Crowdstrike Logo

    Detect network threats and automatically quarantine impacted devices.

    Read More...

    See All Integrations

    Featured Customer Story

    Ulta Beauty Logo

    ULTA Beauty Securely Scales High-Growth e-Commerce Operation in the Cloud with ExtraHop

    Read More...

    See All Customer Stories

  • For Cloud

    For Cloud

    Secure rapid cloud adoption and maintain control of applications, workloads, and data in cloud or multi-cloud environments.

    Use Cases

    • Monitor Critical Cloud Workloads
    • Detect Supply Chain Attacks
    • Cloud Detection and Response
    • Respond to Alerts That Matter
    • Security for AWS
    • Security for Azure
    • Security for Google Cloud
    • See All Use Cases

    Cloud Resources

    • Using MITRE ATT&CK In Cloud and Hybrid Environments
    • Multi-Cloud Security: Removing Friction from the Development Process

    See All Resources

    Enterprise-Ready Integrations

    Amazon Web Services Logo

    Unified cloud security and monitoring with AWS and ExtraHop.

    Read More...

    See All Integrations

    Featured Customer Story

    Wizards of the Coast Logo

    Wizards of the Coast Delivers Frictionless Security for Agile Game Development with ExtraHop

    Read More...

    See All Customer Stories

  • For IT Ops

    For IT Ops

    Boost NOC/SOC collaboration and ensure availability and performance across your hybrid enterprise.

    Use Cases

    • Resolve Performance Issues
    • Support Distributed Workers
    • Reliably Scale to the Cloud
    • NetOps and SecOps Collaboration
    • See All Use Cases

    IT Ops Resources

    • 451: Digital Experiences Are Front and Center In Coping with Coronavirus
    • Office Shutdown: Securing an Increased Remote Workforce

    See All Resources

    Enterprise-Ready Integrations

    ServiceNow Logo

    Know and do more, faster. ExtraHop + ServiceNow makes IT service management even more seamless.

    Read More...

    See All Integrations

    Featured Customer Story

    The Home Depot Logo

    The Home Depot Builds Unified Customer Experience with Visibility from ExtraHop

    Read More...

    See All Customer Stories

  • Blog
  • More
    • Customers
    • Partners
    • Resources
    • About Us
    • Support
    • Support Overview
    • Documentation
    • Hardware Policies
    • Services
    • Services Overview
    • ExtraHop Reveal(x) Advisor
    • Deployment
    • Training
    • Training Overview
    • Training Sessions
    • Community
    • Customer Portal Login
    • Solution Bundles Gallery
    • Community Forums
    • Customer Stories

    Partners

    • Panorama Partner Program
    • Overwatch Managed NDR
    • Technology Integration Partners
    • Partner Portal Login
    • Become a Partner

    Resources

    • Customer Stories
    • Remote Access Resource Hub
    • All Resources
    • White Papers
    • Datasheets
    • Industry Reports
    • Webinars
    • Network Attack Library
    • Protocol Library
    • Documentation
    • Firmware
    • Training Videos
    • About ExtraHop
    • About Us
    • The ExtraHop Difference
    • What Is Cloud-Native?
    • Leadership
    • Board of Directors
    • Careers
    • Careers Overview
    • Search Openings
    • News
    • Newsroom
    • Press Releases
    • ExtraHop in the News
    • Engage with Us
    • Contact Us
    • Upcoming Webinars and Events
    • Take the Live Demo

    Ulta Beauty

    ULTA Beauty Securely Scales High-Growth e-Commerce Operation in the Cloud with ExtraHop

    Read More...

    Crowdstrike

    Detect network threats and automatically quarantine impacted devices. Inventory devices not yet protected by endpoint security.

    Read More...

    2020 Gartner Market Guide for Network Detection and Response

    ExtraHop is a representative vendor two years running. Learn why.

    Read More...

    Newsroom

    Get the latest news and information about ExtraHop, including press releases and third-party coverage.

    Read More...

X button
Login
Logout
Start Demo

The Platform

For Security

For Cloud

For IT Ops

Blog

More

Start the Democaret-right

Contact Uscaret-right

caret-left Back

ExtraHop Reveal(x)

Cloud-native visibility, detection, and
response for the hybrid enterprise.

Reveal(x) 360

SaaS-based network detection
and response.

Learn More

How It Workscaret-right

Reveal(x) Enterprise

Self-managed network detection
and response.

Learn More

How It Workscaret-right

caret-left Back

For Security

Protect and scale your business with complete visibility, real-time threat detections, and intelligent response.

Learn More

Comprehensive Inventory of All Devices

Detect Lateral Movement

Monitor Sensitive Data Movements

Respond to Alerts That Matter

Simple, Streamlined Threat Hunting

Next Generation Intrusion Detection System

caret-left Back

For Cloud

Secure rapid cloud adoption and maintain control of applications, workloads, and data in cloud or multi-cloud environments.

Learn More

Monitor Critical Cloud Workloads

Detect Supply Chain Attacks

Cloud Detection and Response

Respond to Alerts That Matter

Security for AWS

Security for Azure

Security for Google Cloud

caret-left Back

For IT Ops

Boost NOC/SOC collaboration and ensure availability and performance across your hybrid enterprise.

Learn More

Resolve Performance Issues

Support Distributed Workers

Reliably Scale to the Cloud

NetOps and SecOps Collaboration

caret-left Back

Blog

Learn More
caret-left Back

Customers

Partners

Resources

About Us

caret-left Back

Customers

Customer resources, training,
case studies, and more.

Visit Customer Portal

Support

Professional Services

Training

Solution Bundles Gallery

Community Forums

caret-left Back

Partners

Partner resources and information about our channel and technology partners.

Visit Partner Portal

Panorama Partner Program

Overwatch Managed NDR

Technology Integration Partners

Become a Partner

caret-left Back

Resources

Find white papers, reports, datasheets, and more by exploring our full resource archive.

All Resources

Customer Stories

Network Attack Library

Protocol Library

Documentation

Firmware

Training Videos

caret-left Back

About Us

See what sets ExtraHop apart, from our innovative approach to our corporate culture.

Learn More

The ExtraHop Difference

What Is Cloud-Native?

Careers

Newsroom

Upcoming Webinars and Events

How to Detect and Respond to the Sunburst Attack Security Alert: Detecting CVE-2020-1472 Zerologon Vulnerability Exploitation with NDR NDR vs XDR: Network Detection and Response vs Extended Detection and Response

Blog

How to Detect and Respond to the SUNBURST Attack

  • ExtraHop
  • December 14, 2020

Security Alert: Detecting CVE-2020-1472 Zerologon Exploitation with NDR

  • Jeff Costlow
  • September 16, 2020

Network Detection and Response (NDR) Vs. Extended Detection & Response (XDR)

  • Jesse Munos
  • August 7, 2020

Security Alert: Detecting CVE-2020-1472 Zerologon Exploitation with NDR


Network Detection and Response (NDR) Vs. Extended Detection & Response (XDR)


How to Detect and Respond to the SUNBURST Attack

  • All Posts
  • Security
  • Cloud
  • Tech
  • Community
  • Trending
  • Security Alerts
  • NDR
  • Security Frameworks
  • Decryption
  • Industry Trends

12.21.20

Video: How to Use NDR to Detect Malware Threats Like SUNBURST

Video from ExtraHop: What we have learned about how the attack works and how NDR is essential to detect threats such as the SUNBURST malware.

ExtraHop

Read On

12.21.20

Video: SUNBURST Attack Series

SolarWinds Orion Sunburst attack video series by ExtraHop. Learn what steps ExtraHop recommends to ensure your network is not compromised.

ExtraHop

Read On

12.19.20

How to Identify Malicious Network and Port Scanning

Network scanning and port scanning aren't inherently hostile, but they're often used maliciously. Learn to identify malicious network scanning and differentiate it from benign behavior.

Christine Shaw

Read On

12.18.20

Analyzing the SUNBURST SolarWinds Attack Campaign For Threat Intelligence

SolarWinds attack: ExtraHop is sharing 1700+ suspicious IP addresses (for threat hunters and data scientists) that were associated with the Sunburst backdoor attack.

Todd Kemmerling

Read On

12.16.20

What's New in 8.3 and Reveal(x)

While release notes provide a comprehensive view of our 8.3 release updates, here is a preview of our most exciting new features.

Jeena Khan

Read On

12.14.20

How to Detect and Respond to the SUNBURST Attack

Sunburst attack 2020: Learn how to detect and respond to the Sunburst backdoor supply chain attack with ExtraHop's spectrum of detection approaches.

ExtraHop

Read On

12.14.20

Designing a Color System: Intuitive UX and Happy Developers

Learn how the ExtraHop UX team redesigned our color system.

Creighton Chamberlain

Read On

12.10.20

Advanced Persistent Threats Can Affect Even the Best of Us

A note from ExtraHop on the recent FireEye breach.

ExtraHop

Read On

12.9.20

Securing Healthcare: Frameworks, Visibility, and the Cloud

Healthcare IT and security teams face a rapidly changing landscape, increasing their workloads while keeping up with emerging security challenges. Get two new resources on securing healthcare.

Karen Crowley

Read On

12.8.20

Paving the Way for Secure DevOps in the Cloud

SANS conducted their annual DevOps survey, seeking to understand whether or not security teams are able to keep pace with DevOps. They concluded that shifting security earlier in the process is a smart strategy for faster deployment.

Carol Caley

Read On

12.4.20

Folding@home for COVID-19 Research

A team of ExtraHoppers has made it into the top 800 in Folding@home, a competitive distributed computing project aiming to better understand COVID-19.

Carol Caley

Read On

12.3.20

ExtraHop Reveal(x) Advisor Available on AWS Marketplace for Professional Services

ExtraHop Reveal(x) Advisor can maximize the value of your security solution and help your existing staff function with more efficiency and expertise. Now available through the AWS Marketplace.

Michael McPherson

Read On

11.20.20

The Tricks of Our Trade: How Reveal(x) Uses Machine Learning

Machine learning is not magic, and not all machine learning is created equal. ExtraHop Reveal(x) makes life easier for security teams with ML subsystems for Perception, Detection, and Investigation.

Edward Wu

Read On

11.13.20

How Ransomware Works and How to Prevent It

Ransomware can cause irreparable damage. Learn how it works and how to detect it to stop attacks.

Kirsten Gantenbein

Read On

11.11.20

Why Network Detection and Response Belongs in Your 2021 Strategy

With 2021 quickly approaching, it's time to think critically about what's working in your security strategy and what could stand to improve. ExtraHop's Mike Campfield joined Enterprise Security Weekly to discuss why network detection and response is critical to the future of security.

Carol Caley

Read On

11.6.20

Top 3 Ways to Improve Incident Response Time by 84%: A Forrester TEI Survey of Reveal(x)

Learn the top three ways you can improve the speed of your incident response.

Karen Crowley

Read On

11.5.20

What Is PsExec and How to Protect Against Lateral Movement

PsExec is a Windows Sysinternals utility that enables IT administrators to run commands and executable binary files on remote servers, but it can also be used for stealthy lateral movement.

Kirsten Gantenbein

Read On

11.2.20

Security Alert: Ransomware Warning for Healthcare

A recent cybersecurity advisory issued by the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Department of Health and Human Services (HHS) warns of an imminent cybercrime threat to hospitals.

Jeff Costlow

Read On

10.29.20

Lessons Learned from Major Breaches

Explore in-depth case studies from the Cloud Security Alliance focused on nine headline-grabbing breaches that map to the "Egregious Eleven" of top cloud threats.

Dale Norris

Read On

10.29.20

ExtraHop Puts the Spotlight on Securing Cloud Services

With a new Cloud Services view, ExtraHop Reveal(x) customers can quickly discover what cloud services they're using, eliminate blind spots in their networks, and detect cloud threats faster.

Dan Frey

Read On
Previous
Next

+

ExtraHop uses cookies to improve your online experience. By using this website, you consent to the use of cookies. Learn More

Global Headquarters
520 Pike St
Suite 1600
Seattle, WA 98101
United States


EMEA Headquarters
WeWork 8
Devonshire Square
London EC2M 4PL
United Kingdom

APAC Headquarters
3 Temasek Avenue
Centennial Tower
Level 18
Singapore 039190

Platform

  • Reveal(x) 360
  • Reveal(x) Enterprise

Security

  • Comprehensive Inventory of All Devices
  • Detect Lateral Movement
  • Monitor Sensitive Data Movements
  • Respond to Alerts That Matter
  • Simple, Streamlined Threat Hunting
  • Next Generation Intrusion Detection System

Cloud

  • Monitor Critical Cloud Workloads
  • Detect Supply Chain Attacks
  • Cloud Detection and Response
  • Respond to Alerts That Matter
  • Security for AWS
  • Security for Azure
  • Security for Google Cloud

IT Ops

  • Resolve Performance Issues
  • Support Distributed Workers
  • Reliably Scale to the Cloud
  • NetOps and SecOps Collaboration

Blog

More

  • Customers
  • Partners
  • Resources
  • About Us
  • Careers
  • Newsroom
  • Contact Us
  • Copyright ExtraHop Networks 2021
  • Terms of Use
  • Privacy Policy
  • Facebook
  • Twitter
  • LinkedIn
  • Instagram
  • YouTube