OpenText EnCase Endpoint Security
Version: 1.1
Updated: Jul 03, 2023
Collect evidence, create events and investigations, and issue containment actions with EnCase Endpoint Security.
Actions
- Collect Data (Enrichment) - Collect data from an endpoint as evidence during an investigation.
- Collect Memory (Enrichment) - Collect memory from an endpoint as evidence during an investigation.
- Collect Timeline (Enrichment) - Collect a timeline of events from an endpoint as evidence during an investigation.
- Find Items of Interest (Enrichment) - Search for items of interest to an investigation.
- List Investigations (Enrichment) -Gather a list of all investigations.
- Create Event (Notification) - Create a new event.
- Create Investigation (Notification) - Create a new investigation.
- Create Snapshot (Containment) - Create a new snapshot.
- Ban Hash (Containment) - Ban a file.
- Quarantine (Containment) - Quarantine a host.
Change Log
- October 3, 2019 - First upload
- July 3, 2023 (v1.1) - Updated the integration with Environmental Variables