How It Works
Integrations and Automations
What is Network Detection and Response (NDR)?
Cloud-Native Security Solutions
Reveal(x) Enterprise: Self-Managed NDR
With the power of machine learning, gain the insight you need to solve pressing challenges.
Stand up to threats with real-time detection and fast response.
Learn More >
Gain complete visibility for cloud, multi-cloud, or hybrid environments.
Share information, boost collaboration without sacrificing security.
Featured Customer Story
Wizards of the Coast Delivers Frictionless Security for Agile Game Development with ExtraHop
See All Customer Stories >
Our customers stop cybercriminals in their tracks while streamlining workflows. Learn how or get support.
Our partners help extend the upper hand to more teams, across more platforms.
Featured Integration Partner
Detect network attacks. Correlate threat intelligence and forensics. Auto-contain impacted endpoints. Inventory unmanaged devices and IoT.
See All Integration Partners >
Get hands-on with ExtraHop's cloud-native NDR platform in a capture the flag style event.
Cloud-native visibility, detection, and response for the hybrid enterprise.
Customer resources, training,case studies, and more.
Partner resources and information about our channel and technology partners.
See what sets ExtraHop apart, from our innovative approach to our corporate culture.
Get the latest news and information.
We believe in what we're doing. Are you ready to join us?
Find white papers, reports, datasheets, and more by exploring our full resource archive.
NetOps, SecOps, and Cloud teams often operate in silos. Improving collaboration and communication can help these teams resolve incidents faster.
Learn how DNS tunneling attacks work and what you can do to protect against them. Examples included!
The Windows 10 vulnerabilities unveiled by Microsoft on October 13 include a remote DoS (CVE-2020-16899) and a remote code execution flaw (CVE-2020-16898) dubbed 'Bad Neighbor'. Get the rundown on potential exploits and what you should do.
Learn how SQL injection attacks work and what you can do to protect against them. Examples included!
Learn how ExtraHop Professional Services helped one company secure a massive increase in personal teller machine use in lieu of in-person interactions.
The recent Zerologon vulnerability (CVE-2020-1472) could allow attackers to get control of a Windows domain without any user credentials. Learn how it works and how to protect against exploits.
Sophisticated cyberattacks go undetected for weeks or months, and when discovered, security analysts struggle to contain the compromise and assess its scope. Most detection tools are able to create incident tickets, but noisy detections quickly become "ticket spam" and contribute to the security analyst's challenge of rising above the noise.
False flags are deliberately planted details meant to distract or mislead investigators. Learn what to look out for and how to get more context.
The Ripple20 group of vulnerabilities affects hundreds of millions of devices across many industries. Learn how to identify devices using the vulnerable Treck software and detect Ripple20 exploits.
Learn how you can leverage JumpCloud SSO with SAML for an uncomplicated approach to multi-factor authentication that works in environments without an existing identity provider.
Learn about TCP windowing covering perspectives of a server as the receiver and a client as the sender.
Learn about the OSI Model - explained layer-by-layer in language you can understand. Recently updated!
ExtraHop doesn't just detect active threats... Prep for March Madness with our favorite examples of video streaming in the workplace.
IoT discovery, behavioral profiling, and advanced threat detection and response are critical for enterprise IoT security. Learn how ExtraHop Reveal(x) secures IoT.
Sending LDAP passwords in clear text was never a good idea, but a Windows update due in the second half of 2020 will make it also painful. Learn how to spot applications that will be affected.
Learn abour Karn's Algorithm in detail including what it does, example uses, and why it's useful.
Explained in detail: Silly window syndrome, how it degrades network performance, and how to avoid it.
Learn how to detect and remediate this critical Citrix Gateway vulnerability as well as how it works.
Watch this 3-minute video to learn how ExtraHop Reveal(x) uses network detection and response to help you quickly and easily audit your network for expired certifications, weak ciphers, and more.
What is endpoint detection and response (EDR) and how should you consider the category in 2020?