Infocyte

About Infocyte

Infocyte is a Managed Detection and Response (MDR) product deployed on top of an existing EPP or MS Defender deployment.

Why You Should Integrate Infocyte

Aurora ASM provides visibility into all Infocyte hosts. With additional sources configured, gaps in EPP covered can be discovered.

The Data We Collect and How We Use It

The table below lists the fields we collect from Infocyte and how they map to the fields in our Aurora ASM platform. This data is only used internally; we do not share it with any parties outside of Arctic Wolf Networks. Refer to our privacy policy for details.

Infocyte FieldAurora ASM Field
IDID
OsversionOS
HostnameHostnames
domainActiveDirectoryDomain
IPIPs
CompletedonLastUpdatedTime

Integrate Infocyte

  1. Add a source: Follow our instructions to add an Aurora ASM source.
  1. Provide credentials: You'll be asked to provide source credentials that Aurora ASM will use to connect to Infocyte:
Credential or ParameterDescriptionWhere You Can Find This Value
urlURL/domain of your Infocyte instance (Example: https://orgname.infocyte.com)Look for the requirement parameters in the Infocyte admin panel; refer to the images below.
api_keyAPI Key retrieved from the Infocyte admin panelLook for the requirement parameters in the Infocyte admin panel; refer to the images below.

2a. In the Infocyte Dashboard, select My Profile from the user menu in the top right corner.

2b. From the Account Settings menu, select API Tokens.

2c. Copy the API Key and provide it as a source credential to Aurora ASM.

If you encounter any errors, they are most likely related to incorrect credentials or insufficient permissions. Verify your work in step 2.

Contact Us

If you're having problems configuring an Integration, or if you've found something wrong in this document, please email us at [email protected].