Cogito

Home / Cogito

Overview

Cogito is derived from the Latin term “I think therefore I am” and is based on the principle establishing the existence of a being from the fact of its thinking or awareness. Cogito, our flagship product, is a cyber security application framework that provides organizations the ability to ingest, process and store diverse security data feeds at scale in order to detect cyber anomalies and enable organizations to rapidly respond to them.

 

Cogito offers a centralized tool for security monitoring and also provides capabilities for log aggregation, full packet capture indexing, storage within a single platform

 

Cogito-SIEM possesses the capability to predict emerging threats while not relying exclusively on signature based detection. Cogito-SIEM integrates a variety of big data technologies in order  to offer a centralized tool for security monitoring and analysis. Cogito-SIEM provides capabilities for log aggregation, full packet capture indexing, storage,advanced behavioral analytics and data enrichment, while applying the most current threat-intelligence information to security telemetry within a single platform.

 

Our Cogito-SOC framework provides four key capabilities:

  • Security Data Lake/Vault – Cogito-SOC platform provides cost effective way to store enriched telemetry data for long periods of time. This data lake provides the corpus of data required to do feature engineering that powers discovery analytics and provides a mechanism to search and query for operational analytics.</p
  • Pluggable Framework – Cogito-SOC platform provides not only a rich set of parsers for common security data sources (pcap, netflow, bro, snort, fireye, sourcefire) but also provides a pluggable framework to add new custom parsers for new data sources, add new enrichment services to provide more contextual info to the raw streaming data, pluggable extensions for threat intel feeds, and the ability to customize the security dashboards.
  • Security Application – Cogito-SOC provides standard SIEM like capabilities (alerting, threat intel framework, agents to ingest data sources) but also has packet replay utilities, evidence store and hunting services commonly used by SOC analysts.
  • Threat Intelligence Platform – Cogito-SOC provides next generation defense techniques that consist of using a class of anomaly detection and machine learning algorithms that can be applied in real-time as events are streaming in.

Industries Empowered

Techaccess Pakistan reintegrates powerful hardware and smart software into various sectors of the region. Working along with our partners, we have strengthened many businesses and brought agility, efficiency and sustainability to their digital footprints. Working alongside technology leaders like these, we empowered the following industries:

Telecommunication

Financial-Sector Industry

Education

Government