Kaspersky Managed Detection and Response

Response types

3 July 2024

ID 215850

Expand all | Collapse all

MDR SOC analysts examine incidents and create responses that you can either accept or reject. This is the default way of how incidents are handled in Kaspersky Managed Detection and Response.

However, you can manually create responses by using the Kaspersky Endpoint Detection and Response Optimum features.

This article only describes the types of SOC analyst responses.

Each response can have a set of parameters that are present on the Responses tab of an incident.

The available response types are:

  • Get file
  • Isolate
  • Disable isolation
  • Delete registry key
  • Memory dump
  • Terminate process
  • Run script
  • Put file in quarantine
  • Restore file from quarantine

See also:

Using Kaspersky Endpoint Detection and Response Optimum features

Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.