Forensics Data
Endpoint Security collects forensics data from endpoints that you can export to a data analytics tool for analysis and create policies accordingly to prevent attacks. For more information on forensics, see Automated Attack analysis.
You can perform following actions with the forensics data:
-
Exporting to Check Point's Threat Hunting.
-
Sending Forensics Data to Third-Party Analytics Tool
-
Downloading Forensics Reports
Note:
Endpoint Security exports the forensic data only in the JSON format. Make sure that the third-party data analytics tool accepts the data in the JSON format.