Product
Product | 2 min read
Email coverage expansion: Sublime Security integration now liveExpel MDR for Email now integrates with Sublime Security for enhanced threat visibility across your inboxes.
Product | 6 min read
From data to deployment: A deep dive into building our AI Resolutions (part two)Dive deeper into Expel's AI Resolutions (AIR) and understand how we developed and tested this feature for our analysts.
Product | 3 min read
Explaining the ‘why’: Our vision for AI-powered alert transparency (part one)Expel created AI Resolutions (AIR) uses AI to generate detailed, data-backed explanations for why a security alert was considered benign.
Product | 5 min read
Explore Expel’s auto remediations: Remove malicious emailIn this series, we explore Expel's auto remediations so you understand how they work. Let's explore remove malicious email.
Product | 2 min read
Level up your cloud defense: Expel’s Wiz Defend integration is now liveExpel's partnership with Wiz Defend gives mutual customers richer alert context, faster response times, and streamlined cloud security.
Product | 3 min read
Unlocking more from your CrowdStrike investmentExpel cuts through the flood of CrowdStrike alerts by 91% on average to maximize your security tools with strong API connections.
Product | 5 min read
Explore Expel’s auto remediations: Reset credentialsIn this series, we explore Expel's auto remediations so you understand how they work. Let's explore reset credentials.
Product | 4 min read
When your keys go missing: getting real about identity threatsExpel updated our threat alerts to be clearer, so you understand precisely what's happening with credential theft and account compromise.
Product | 5 min read
That’s not MDR, it’s a scapegoatDiscover why outsourcing alert triage falls short and how a human-AI collaborative approach can improve cybersecurity outcomes.
Product | 5 min read
Explore Expel’s auto remediations: Disable access keyIn this series, we explore Expel's auto remediations so you understand how they work. Let's explore disable access key.
Product | 3 min read
Expel’s guiding principles: Building AI and automation into the foundation of our MDRExpel has three guiding principles that guide how AI & automation are used as the foundation of our SecOps platform, Expel Workbench™.
Product | 6 min read
Explore Expel’s auto remediations: Disable user accountIn this series, we explore Expel's auto remediations so you understand how they work. Let's explore disable user account.
Product | 6 min read
How we built this: machine learning, IAM, and ITDR with Expel’s SOCExpel uses AI-powered classification to categorize our identity alerts and provide transparent decision-making. Here's how we do it.
Product | 4 min read
How Expel puts AI and automation to work (the right way)Expel MDR uses AI and automation to augment the expert skills of our human analysts, so customers get the best of both worlds.
Product | 5 min read
Explore Expel’s auto remediations: Delete registry keyIn this series, we explore Expel's auto remediations so you understand how they work. Let's explore delete registry key.
Product | 5 min read
Explore Expel’s auto remediations: Delete malicious fileIn this series, we explore Expel's auto remediations so you understand how they work. Let's explore delete malicious file.
Product | 5 min read
Explore Expel’s auto remediations: Block bad hashIn this series, we explore Expel's auto remediations so you understand how they work, and the benefits of each. Let's explore block bad hash.
Product | 3 min read
How to onboard with Expel in 7 minutes (No, really. We’ll show you.)See with your own eyes how Expel MDR is up and running in less than seven minutes, from API connection to immediate protection.
Product | 2 min read
More SIEM flexibility: Expel MDR adds support for XSIAMExpel expands its SIEM coverage by launching advanced support for Palo Alto Networks Cortex® XSIAM. Welcome XSIAM users!
Product | 4 min read
Explore Expel’s auto remediations: Contain hostIn this series, we explore Expel's auto remediations so you understand how they work, and the benefits of each. Let's explore contain host.
Product | 4 min read
Explore Expel’s auto remediations: Kill processIn this series, we explore Expel's auto remediations so you understand how they work, and the benefits of each. Let's explore kill process.
Product | 2 min read
Expel launches proactive defense for email threatsExpel's new integrations expand our comprehensive MDR coverage against phishing, business email compromise (BEC), and inbox-based attacks.
Product | 4 min read
The power of API integrations in managed detection and response (MDR)Expel's API connection expertise is the strongest way to collect telemetry, secure your environment, and limit threats.
Product | 4 min read
New auto remediation updates: Delete registry key & customizable response action preferencesExpel is sharing two auto remediation updates: a "delete registry key" response action, and deeper customization.
Product | 2 min read
Expel’s new Oracle Cloud Infrastructure (OCI) integration completes your cloud coverageExpel announces new coverage for Oracle Cloud Infrastructure (OCI) to enhance our leading cloud MDR with an OCI API integration.
Product | 2 min read
Expel MDR customers benefit from expanded threat intel experienceThreat Bulletins are now available in Expel Workbench™, including details on any threat hunting completed to resolve the issue.
Product | 3 min read
Expel MDR has new advanced identity threat detection & responseExpel MDR's new auto remediation feature makes it easier to fix credential compromises in common tools, like Okta. Learn more.
Product | 2 min read
Expel expands MDR offerings for all levels of security maturityExplore new, flexible MDR offerings to allow organizations of any size and budget to benefit from Expel’s award-winning MDR technology.
Product | 2 min read
Expel x Google Cloud Next ‘24: pioneering next-gen cloud securityWe’re heading out to Google Cloud Next ‘24 to elevate the discussion around cloud security with cloud visionaries and thought leaders. Will you be there?
Product | 5 min read
Automated remediation: benefits and customization for modern security operationsAutomated remediation represents substantial benefits, including cost savings and faster response times, but one size doesn’t fit all.
Product | 2 min read
Expel Workbench History = unparalleled MDR transparencyExpel Workbench's History shows every investigative action in a single thread, from the moment it was triaged through its closure.
Product | 5 min read
How we built it: the app that gives our analysts more time to fight cyber evilAuto-close marketing emails is a feature that frees up time for our analysts and offers insights into app development using machine learning.
Product | 3 min read
Okta cross-tenant impersonation: a new Expel detectionOkta recently described a novel attack on a customer organization. Expel analyzed the information and has developed two new detections for this attack.
Product | 3 min read
Following the lifecycle of a cloud alert in Expel WorkbenchOur tour shows you the journey a cloud alert takes in Expel MDR for cloud infrastructure, in a single or multi-cloud environment.
Product | 2 min read
Bridging the risk and cybersecurity gap with Visa and ExpelExpel and Visa have entered into a strategic partnership to utilize MDR for both Visa as a customer and for their clients to mitigate cybersecurity risk.
Product | 2 min read
Integrations roundup: maximize your existing tech investmentsOur integrations portfolio includes 130+ technologies, and we’re always adding to that list. Here are our newest tech integrations.
Product | 2 min read
Two new Expel Workbench™ improvements for greater transparencyWe’ve released new features in Expel Workbench that give you better visibility into your SecOps today, and share what's next.
Product | 1 min read
New Expel Workbench integrations: defend against identity threatsOur latest Integrations with 1Password, Snowflake, Auth0, and Crowdstrike Falcon Identity Protection help protect against identity threats.
Product | 2 min read
Add context to supercharge your security decisions in Expel WorkbenchSOC teams need more context to make fast decisions. Expel Workbench adds key context to help defenders make better security decisions.
Product | 4 min read
An easier way to navigate our security operations platform, Expel WorkbenchExpel Workbench got a makeover! Our security operations platform is now faster and more intuitive, helping defenders protect even quicker.
Product | 3 min read
Integrations roundup: new integrations to manage overall business riskExpel now integrates with popular business apps, expanding our bring-your-own-tech approach. See how we're making security smarter and more connected.
Product | 3 min read
Connect Hashicorp Vault and Google’s CloudSQL databases: new plugin!Expel is excited to open source a new Hashicorp Vault plugin that brokers database credentials between Hashicorp Vault and Google’s CloudSQL DBs.
Product | 7 min read
How we built it: Alert SimilarityToo many alerts? Our Alert Similarity tool teaches bots to suggest a next step, freeing up analysts. Learn how we developed this tech.
Product | 4 min read
How Expel’s Alert Similarity feature helps our customersWhat if your alerts were smarter? We taught our bots to compare similar alerts and recommend a next step, saving analysts valuable time.
Product | 2 min read
Cutting Through the Noise: RIOT Enrichment Drives SOC ClarityCut through the noise in your SOC with RIOT enrichment. Also known as the rule-it-out enrichment, see how it works.
Product | 5 min read
Detecting Coin Miners with Palo Alto Networks NGFWWorried about cryptojacking? Learn how we use a Palo Alto Networks firewall to detect it and how our bot automates a response to help.
Product | 4 min read
How we use VMRay to support Expel for PhishingSmart people and great tech tackle phishing. See how our analysts use VMRay to triage and analyze malicious emails from customers.
Product | 7 min read
Come sea how we tackle phishing: Expel’s Phishing dashboardGet a tour of Expel's Phishing dashboard. See how a senior UX designer developed it for our managed phishing service customers.
Product | 6 min read
Performance metrics, part 3: Success storiesReduce analyst burnout! Get our SOC team's success stories on creating efficiency and download a resource to measure performance.
Product | 3 min read
Expel Hunting: Now in the cloudWorried about cloud visibility gaps? Expel Hunting now features new cloud hunts to help you spot blind spots and secure your environment.
Product | 2 min read
Introducing Expel Workbench™ for Amazon Web Services (AWS)Spend less time fixing AWS security issues. Our new SaaS product automates alert and log investigation, freeing up your team.
Product | 7 min read
Enhancing phishing protection: analyst & customer securitySafeguard your team. Learn how Expel's robust phishing protection measures secure analysts and customers against dangerous email threats.
Product | 8 min read
How to investigate like an Expel analyst: The Expel Workbench managed alert processHow do SOC analysts investigate alerts? Learn about the Expel Workbench managed alert process workflow and how it can help your team.
Product | 2 min read
Announcing Open Source python client (pyexclient) for Expel WorkbenchWe're open sourcing a Python client for Expel Workbench APIs! Find out what the pyexclient project includes so you can take advantage.