Kaspersky Anti Targeted Attack Platform is a solution for protection of an organization's IT infrastructure and early detection of threats such as zero-day attacks, targeted attacks, and advanced persistent threats (hereinafter also referred to as APT). The application is intended for corporate users.
Kaspersky Anti Targeted Attack Platform includes two functional parts:
Kaspersky Endpoint Detection and Response includes the following components:
The components interact according to the following principle:
Kaspersky Endpoint Agent is installed on individual computers running Windows that are included in the organization's IT infrastructure. The application constantly monitors processes, open network connections, and files being modified. Data about events on the computer is sent to the server with the Central Node component.
When integrating the Central Node server with Kaspersky Endpoint Agent, you can take the following measures to respond to detected threats:
You can configure integration between Kaspersky Endpoint Agent and KATA Central Node in Kaspersky Security Center Administration Console, in Kaspersky Security Center Web Console or using the command line interface locally on the device.
For complete information about Kaspersky Anti Targeted Attack Platform, as well as for information on configuring Kaspersky Endpoint Agent's integration from KATA's side, refer to the Kaspersky Anti Targeted Attack Platform Help.
Page top