HomeContactSite MapPrivacy Policy
         
CompanyProfessional ServicesEducationSoftwareResources
Overview
Intelligent Response
First Response
Web Historian
Red Curtain

 

 

 

 
 

First Response

 

MANDIANT First Response is Incident Response management software intended for information security staff, investigators and forensic professionals that respond to computer security incidents. MANDIANT recognizes the importance of investigating any potential computer security incident, and we created MANDIANT First Response to foster diligent, effective and efficient response to these incidents.

MANDIANT First Response provides the ability to remotely collect the volatile data, file lists, registry information, event logs, running processes, running services, file time/date stamps and many other data sources to allow an organization to perform precision strike responses when an incident may have occurred. MANDIANT First Response promotes getting the right information into the hands of the right people quickly and intelligently.

MANDIANT First Response contains a Command Console and a First Response Agent. The First Response Agent can be deployed on your infrastructure prior to an incident and run as a service for network-based acquisition of information, or run locally if you're working with individual assets. The data collected by the First Response Agent includes the data used by responders to determine whether an incident occurred or not. The Command Console provides an intuitive graphical user interface and report generating capability to allow your analysts to rapidly review, categorize and report on findings. Since all data is gathered, stored, and manipulated as compressed XML, you can easily use MANDIANT First Response data in conjunction with other information security products deployed in your environment. The ability to capture important system data and review it in an effective, centralized location exists today with MANDIANT First Response.

MANDIANT First Response version 1.1.1 addresses vulnerabilities including possible Denial of Service and session hijacking issues associated with the MFR Agent software. The full advisory is available at http://www.symantec.com/content/en/us/enterprise/research/SYMSA-2006-013.txt [MANDIANT First Response 1.1.1 includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit (www.openssl.org/), as well as cryptographic software written by Eric Young (eay@cryptsoft.com) and Tim Hudson (tjh@cryptsoft.com)]

Learn more

Screenshots

Download First Response

FirstResponseSetup-1.1.1.exe
MD5: eabfc4196ff816f85086f8347d70c7df
SHA1: 02bd6a4ac246f32d004b42e730a3c55a79a82026