Goals

ESET Enterprise Inspector is an essential component to help ensure the highest level of enterprise security. As a critical tool for risk assessment and detection, ESET Enterprise Inspector is a comprehensive Endpoint Detection and Response (EDR) system that includes the following features:

Incident detection—monitor the Alarms section to reveal security incidents,  Advanced Persistent Threats (APT), targeted attacks.

Incident management and response—use a built-in set of rules or create own rules to respond to detected incidents. Rules guide is available in the help section of EEI Web Console.

Data collection—determine when an executable was launched for the first time and by whom, check the dwell time and attacked devices.

Indicators of Compromise (IOC) detection.

Anomaly detection—see what is being executed in your company network, reveal unexpected actions.

Behavior detection—see what actions were carried out by an Executable: modified files, changing registry entries, connections made. Assess if the executed processes are safe or suspicious by looking at markers such as LiveGrid® reputation

Policy violations—block malicious executables from being executed on any computer in your company network.

Email notifications—cooperation of ESET Enterprise Inspector with ESET Security Management Center results in beneficial security email notifications.