CRA Evidence Reviews

ThreatLocker is a Zero Trust platform designed to prevent cyber threats by ensuring only trusted applications and processes are allowed to operate. It eliminates persistent admin privileges, applies least privilege controls, and gives organizations granular control over how software runs. Through application allowlisting, ringfencing, and storage controls, it blocks ransomware, zero day attacks, and unauthorized behavior before anything can execute. Built for today’s IT and security teams, ThreatLocker delivers centralized control and real time visibility across endpoints, users, and applications. It reduces attack surface, limits lateral movement, and supports compliance with detailed logging and audit trails. With rapid deployment, a continuously maintained application library, and efficient approval processes, organizations can enhance security while lowering operational complexity and maintaining uptime.

Criminal IP functions as a cyber threat intelligence search engine designed to identify real-time vulnerabilities in both personal and corporate digital assets, enabling users to engage in proactive measures. The concept behind this platform is that by acquiring insights into potentially harmful IP addresses beforehand, individuals and organizations can significantly enhance their cybersecurity posture. With a vast database exceeding 4.2 billion IP addresses, Criminal IP offers crucial information related to malicious entities, including harmful IP addresses, phishing sites, malicious links, certificates, industrial control systems, IoT devices, servers, and CCTVs. Through its four primary features—Asset Search, Domain Search, Exploit Search, and Image Search—users can effectively assess risk scores and vulnerabilities linked to specific IP addresses and domains, analyze weaknesses for various services, and identify assets vulnerable to cyber threats in visual formats. By utilizing these tools, organizations can better understand their exposure to cyber risks and take necessary actions to safeguard their information.

Arctic Wolf is a comprehensive cybersecurity platform built to deliver AI-driven protection and end-to-end security operations for organizations of all sizes. It combines advanced technology, continuous monitoring, and expert-led services to help businesses prevent, detect, and respond to cyber threats in real time. At the center of its ecosystem is the Aurora Platform, an open XDR solution that integrates security data from across endpoints, networks, and cloud environments into a single unified view. This allows organizations to gain full visibility into their security posture and respond quickly to emerging threats. Arctic Wolf enhances its platform with a concierge delivery model, providing dedicated security experts who guide organizations through threat detection, incident response, and risk management. The platform supports a wide range of security solutions, including managed detection and response, cloud security posture management, security awareness training, and vulnerability management. It also focuses on reducing cyber risk by combining proactive threat prevention with rapid incident response capabilities. Arctic Wolf’s ecosystem includes hundreds of integrations and partnerships, enabling seamless connectivity with existing tools and workflows. Additionally, the platform offers risk transfer and insurability support, helping organizations prepare for and mitigate the financial impact of cyber incidents. By combining AI, automation, and human expertise, Arctic Wolf enables businesses to move beyond reactive security and adopt a proactive, resilience-focused approach. It is designed to scale with evolving threats and organizational needs, ensuring long-term protection. Overall, Arctic Wolf helps organizations achieve stronger security outcomes, reduce risk, and maintain confidence in their digital operations.