Prevent crafted cyberattacks
Owlyshield Platform
Owlyshield – User and entity behavior analytics (UEBA) AI to detect crafted cyberattacks
01
Ransomwares detection
Static analysis as performed by AV is only able to detect known threats, explaining why hackers are adapting so quickly and ransom attacks surging.
We provide an embarked behavioural analysis AI that is able to detect and kill ransomwares in their very early execution.
02
Advanced Intrusions UEBA
Some applications and systems are critical to your business. They need to be particularly monitored, in particular against cyberattacks carried out with legitimate user access.
We provide a UBEA AI that learns how users and applications normally behave in order to detect and analyse novelty.
Owlyshield is the best AI model on the market for detecting ransomwares
Every significant novelty running on a production architecture should be known. We use autosupervised learning to detect them.
Owlyshield is natively integrated with:
Owlyshield helps you redteam focus on events that matter
We use Deep Learning to help redteams identify worthy of interest events (find the needle in the haystack). By using deep learning models directly trained on out customer data, we are able to detect very thin intrusion traces and minimize false-positives, before events are uploaded to your SIEM.
You don’t have time and resources for cybersecurity?
We provide Owlyshield as a service, that is we are in charge of monitoring the system, alerting you in case of an event of interest and helping you to understand what happened (MSSP).
SERVICES
We are ethical hackers
We are very commited to sharing our knowledge about vulnerabilities and exploits of the real world:
- By alerting companies before they are impacted (as an example, we discovered that more than 600 french companies were concerned by a VPN major vulnerability),
- We discovered important CVE,
- We contribute to the Mitre Att&ck framework by proposing new techniques.
Most of cyberattacks in blackbox (without prior knowledge about the targets) start by searching for publicly available data. Among them:
- Documents indexed by search engines,
- Active scaning in order to discover interesting internal URI and servers,
- Discovering the company organigram to prepare for a phising,
- Numerous closed sources, in particular on the darknet.
A simple audit may help you to discover you weaknesses and be prepared for any circumstance (cyberattacks, RGPD leak, application failures…) through the following process:
- Enumerate all risk,
- For each risk, evaluate its criticity (combination of its probability of occurence and its cost impact) and define a strategy (avoid, accept, transfer).
The best method to check if your organisation is vulnerable is to be attacked. We use the same methods than hacker to try to penetrate and exploit your systems in two ways:
- Blackbox: without no prior information about your company, other than its name,
- Whitebox: with an employee access to the internal network (you decide which role may be relevant).
We have the special knowledge and tools to disassemble suspect programs and understand what they do.
In the special case of ransomwares attacks, it sometimes possible to recover the data by understanding the encryption process.
In any case, gathering information is always useful, in particular if a negociation has to be conducted.
ABOUT US
AI and Cybersecurity – the best of two worlds
At SitInCloud we use deep learning for cybersecurity.
To protect your data against known and unknown malwares, we created Owlyshield.
And because we believe that security requires transparency, we have made it open source.
Our Team
We are Cybersecurity and Datascientists engineers.
Open Source
Open source is the way to go to solve both trust and efficacy.
BLOG
News and Publications
- June 15, 2022
Anatomy of Computer Viruses
An easy-to-read article about computer viruses! Here you will learn what they are, how they infect programs and how ... - June 11, 2022
Proposal for a Mitre Att&ck new subtechnique.
Our red team discovered and successfully tested the following technique on enterprise business systems. Inflicted damages are critical and ...
CONTACT
“Security is always seen as too much until the day it’s not enough.”
William H. Webster, former FBI Director
Hackers are adapting quickly. Phishing is no more. Welcome to attacks conducted with legitimate access!
PHONE: (+33)5 64 27 05 82
EMAIL: contact@sitincloud.com
SitinCloud SAS, Avenue Jean Monnet, 64130 CHERAUTE, France