EnCase Bit9 Analyzer

EnCase® Bit9 Analyzer

EnCase Bit9 Analyzer maingraphic

Customers are provided with periodic updates that consist of new applications and patches to existing applications. With frequent updates, you are assured the data is current and you are able to effectively disqualify irrelevant executables.

Reduce Time to Complete Any Investigation or Audit

Key Benefits & Features

EnCase® Bit9 Analyzer With EnCase Bit9 Analyzer, users of EnCase software can quickly search through their entire enterprise at a forensic level and compare all volatile data such as active processes, drivers and DLLs, as well as static data, against a database of known applications. Analysts can quickly identify all known malware, trusted binaries, unknown processes and user-created data. Known malware, system binaries and user applications can quickly be eliminated, while unknown processes and user-created data can be investigated, categorized and tagged for future use with EnCase software. With EnCase Bit9 Analyzer, examiners can also quickly eliminate known and trusted files to focus on unknown and user-created data, dramatically increasing the efficiency of any investigation, audit, or eDiscovery collection.

Leverage Dynamically Maintained System Profiles

Creating system profiles is a common method of minimizing the risks in a network, identifying the known good binaries for a given set of systems. Security analysts are responsible for maintaining these profiles on a periodic basis with added patches and other software, which is a non-trivial responsibility. The EnCase Bit9 Analyzer eliminates resource- and time-intensive processes by automating the identification of application file threat levels. By dynamically updating system profiles, the integrated solution enables security analysts to define a given threat profile for various sets of assets.

Key Benefits

Increase efficiency and reduce costs for any type of investigative operation
Quickly locate any malware or programs in violation of policy
Categorize binaries from anywhere on the network
Identify risks that threaten the organization’s data and systems

Key Features

Database contains metadata on over 350 million files and over 200 million unique hashes
Covers over 9 million applications from over 20 thousand vendors
Includes Microsoft, Linux, Mac and Open Source applications
Solution includes periodic updates to the binary database

Brochures

EnCase® Enterprise for Corporations

EnCase® Portable OneSheet

EnCase® In Action (PDF)

More Brochures

Whitepapers

Sarbanes-Oxley (PDF)

Basel Committee Incident Response Standards (PDF)

More Whitepapers

EnCase® Bit9 Analyzer

Quickly identify all known malware, trusted binaries, unknown processes and user created data, greatly reducing investigation time.

Learn More

Demo

EnCase® Data Audit & Policy Enforcement

EnCase® eDiscovery

Download the Webex Player

EnCase® v6 Webinar

Building an Investigative Infrastructure to Solve Critical Business Problems

Large Scale Intrusion Investigations

Forensics as a Critical Component of Incident Response

More Webinars

CEIC® Conference

Guidance Software is proud to host the 10th Annual CEIC for digital investigation professionals. The four-day event showcases technology innovations and enables you to increase your knowledge and skill with over 115 breakout sessions across 11 tracks.

Visit the CEIC® Website

View Events Calendar