Experiencing a Breach?
en
Platform
Why SentinelOne?
Services
Partners
Resources
About
en
Get a Demo

Central Park Feature Glance – Deep Visibility Watchlists

by Gary Mello

Today’s blog post will focus on a new enhancement to our Deep Visibility solution.  With our Central Park release, we have introduced the concept of Watchlists.  

This module allows the SentinelOne administrator to create alerts based off Deep Visibility data, which could be anything from modifications to critical files, web requests to a given URL, access to a given IP or DNS name, discovery of a specific process within the environment, & etc.  The sky is the limit when it comes to creating entries within the Watchlist.  The image below is an example of a Watchlist.

In the video below, I walk though a basic configuration of Watchlist, demonstrate a watchlist around access to pastebin.com over SSL, and lastly show the discovery of a few potentially unwanted processes discovered within the environment.

 

 

Like this article? Follow us on LinkedIn, Twitter, YouTube or Facebook to see the content we post.

Read more about Cyber Security

Read More

Get a demo

Defeat every attack, at every stage of the threat lifecycle with SentinelOne

Book a demo and see the world’s most advanced cybersecurity platform in action.

Get Demo

SentinelLabs

SentinelLabs: Threat Intel & Malware Analysis

We are hunters, reversers, exploit developers, & tinkerers shedding light on the vast world of malware, exploits, APTs, & cybercrime across all platforms.

VISIT SITE

Wizard Spider and Sandworm

MITRE Engenuity ATT&CK Evaluation Results

SentinelOne leads in the latest Evaluation with 100% prevention. Leading analytic coverage. Leading visibility. Zero detection delays.

SEE RESULTS