DNSCyte is a recursive DNS Service based on global cyber threat intelligence and machine learning to block threats and targeted attacks in real time.
DNSCyte can block zero day attacks and identify malicious activity. DNSCyte handles the DNS requests from users and redirects malicious requests to a sinkhole providing a new layer of security with artificial Intelligence.
Monitor and control Internet access for your entire organisation.
Enable secure Internet browsing. Block malicious activity and zero days attacks even when users are off premises.
User behaviour analysis integrated to DNS baselining with machine learning and artificial intelligence for automated classification and blocking.
Enforce corporate compliance to acceptable use policy and enabler for external regulations.
Frictionless access, self-service and self-enrolment increasing business productivity.
Stop Zero-Day attacks
Pre & Post infection protection
Define and enforce Internet usage policy
White list categorisation of Internet traffic (all ports and protocols)
Next Generation protection using Machine learning & Artificial Intelligence
Classification Within Seconds
DNSCyte machine learning technology enables the classification of unknown traffic in seconds.
DNS Tunnelling Discovery
Discovery of DNS tunnelling is now easy with DNSCyte.
Malicious Activity Prevention
Protect your network against ransomware, malware, phishing, and botnet threats. Stop malicious activity before it starts communication.
Whitelisting for Internet
Only permit categorised Internet traffic to enable strong protection for zero-day attacks.
Analysis of DNS Debug Logs
Identify the source of malicious traffic by enabling the automatic analysis of internal DNS Server logs.
Cloud Based Realtime Reporting
Get real-time visibility and centralised reporting without any on-premise component.
In depth digital forensics for users, devices and processes by supporting Inline and out of band operation support.
Every device and user accessing Internet sends a DNS query to the DNSCyte DNS Server.
DNSCyte DNS Server forwards the request to the DNSCyte Threat Intelligence Service.
If the resolved domain name has malicious content or access to the page is blocked in the
defined policy the user is redirected to a secure web page for notification.
Information about the requested page is reported.
Configure devices in the network to use DNSCyte DNS Servers. Necessary configuration changes are based on how DNS is configured within the organisation.
If a local DNS server is used, DNSCyte should be defined as the forwarder DNS on the local DNS Service.
When using a public DNS Service, configure the DNSCyte IP Addresses as the DNS Server in the DHCP settings.
Hardware Requirements: No hardware is required for this mode of operation.
DNS debug logs from domain name controllers or other DNS Server’s are analysed by DNSCyte on premise module.
System forwards the request to the DNSCyte Threat Intelligence Service for classification ans security check.
Response coming from DNSCyte Threat Intelligence Service is used to permit or deny Access.
System can send the response to a SIEM with customized fields in Syslog format.
DNSCyte can also integrate with the following platforms in identifying the source of the malicious traffic without relaying the DNS traffic:
*Hardware required only if an on-premise DNS Server integration is required.