/
How much data is produced by Cyber Crucible?

How much data is produced by Cyber Crucible?

Owned by Kyle Nehman
May 23, 2024
1 min read

The data collected by the Cyber Crucible agent goes through multiple layers of filtering, in order to cut out noise from having too much raw telemetry. The raw data produced by the kernel sensors is trimmed down [Filter #1] to reduce both endpoint memory usage, and network bandwidth per-agent. Following that, the REST API will associate raw process/endpoint telemetry it receives to automated responses, such that the analyst can choose to view only relevant data [Filter #2].

 

Blank diagram-20240523-165941.png

As seen in the figure above, an average customer’s workstation endpoints may produce multiple gigabytes of raw sensor data over a 24hr span, whereas only a few megabytes of which will be relevant to a SOC alert if an attack is attempted.

 

Related content

How does Cyber Crucible use memory analytics?
How does Cyber Crucible use memory analytics?
Cyber Crucible Knowledge Base
More like this
Is this a tool I have to monitor all of the time, like a normal security dashboard?
Is this a tool I have to monitor all of the time, like a normal security dashboard?
Cyber Crucible Knowledge Base
More like this
06 March, 2024
06 March, 2024
Cyber Crucible Knowledge Base
More like this
Is Cyber Crucible an EDR, an XDR, or something else?
Is Cyber Crucible an EDR, an XDR, or something else?
Cyber Crucible Knowledge Base
More like this
Cyber Crucible On-Boarding Process
Cyber Crucible On-Boarding Process
Cyber Crucible Knowledge Base
More like this
Do you collect any of identity data?
Do you collect any of identity data?
Cyber Crucible Knowledge Base
More like this