Fidelis Network for SentinelOne describes an XDR integration that combines Fidelis Network NDR deep traffic inspection with SentinelOne EDR endpoint telemetry to improve detection, validation, and response. Fidelis analyzes all network traffic to detect threats and data exfiltration, generate alerts or preventive actions (such as packet drops and email quarantine), classify assets, and capture rich metadata, then queries SentinelOne to validate whether a malicious file hash executed on the destination endpoint. Validated alerts are escalated with higher priority and investigators can pivot directly to SentinelOne Storyline from Fidelis alert details. The integration also supports manual or playbook-driven automated validation and optional threat blocking by adding hashes to SentinelOne, wh

Join for free to read