SentinelOne’s single agent technology uses a Static AI engine to provide pre-execution protection.
The Static AI engine replaces traditional signatures and obviates recurring scans that kill end-user productivity.
Behavioral AI engines track all processes and their interrelationships.
On detecting malicious activities - file-based malware, scripts, weaponised documents, lateral movement, fileless malware, zero-days - the agent responds automatically at machine speed.
SentinelOne’s Automated EDR provides rich forensic data and can mitigate threats automatically, perform network isolation, and auto-immunize the endpoints against newly discovered threats.
As a final measure, SentinelOne can even rollback an endpoint to its pre-infected state.
Trojans, malware, worms, backdoors, payload-based
Memory-only malware, no-disk-based indicators
Exploits routed in Office documents, macros, Adobe files, spear phishing emails
Powershell, WMI,PowerSploit, VBS
Mimikatz, credentials scraping,tokens