Introduction to Xcitium Threat Hunter Assessment Tool
Xcitium Threat Hunter Assessment Tool is a lightweight scanner which identifies unknown, and potentially malicious files, on your network. After scanning your systems, it will classify all audited files as 'Safe', 'Malicious' or 'Unknown'.
While ‘Safe’ files are ok to run, and ‘Malicious’ files are dangers you should remove, it is in the 'Unknown' category where most zero-day threats are found. Traditional antivirus systems allow unknown files to run simply because they have not yet been ‘proven bad.’
Antivirus companies need to first observe the malware in action before they can classify it as malicious. Until this happens, the malware will have a rating of ‘unknown’ and is free to run undetected. ‘Innocent until proven guilty’ might be the defining characteristic of a healthy criminal justice system, but it certainly won’t keep your network secure.
Threat Hunter Assessment Tool (THAT) allows you to upload unknown files to our Verdict Cloud servers where they will undergo a battery of tests to discover whether they are harmful or not. You can view the results of these tests in the interface.
/cd506670ec340e86e7a3886398efa838/5eac818f1e1c4adc19d335055b06586b/5d65add89a679354bd752c807aecf618/Introduction.png)
Features
• No installation required. Just download and run. You can even run the Threat Hunter Assessment directly from a USB stick.
• Capable of scanning computers from Active Directory, Workgroup or by Network Address
• Unknown files can be automatically uploaded to Xcitium Verdict Cloud and tested for malicious behaviour
• Detailed reports provide invaluable insights into the trust level of files on your Network
This guide is intended to take you through the use of Xcitium Threat Hunter Assessment and is broken down into the following main sections.