Cyber Triage Logo

Cyber Triage User’s Guide

Cyber Triage® is incident response software that enables IT and information security incident responders to collect, analyze, and act more quickly when a threat has been identified. With Cyber Triage® the user can analyze a computer to determine whether or not it was compromised.

This user guide contains all information about how to install and use the Cyber Triage® software.

If you are evaluating Cyber Triage® for the first time, refer to the separate Evaluation Guide document for assistance on getting started as quickly as possible.

If you are upgrading, then refer to:

Deployment Versions

There are four versions of Cyber Triage. To make sure you get the most out of this User Manual, ensure you know which you have.

  • Standard is the base version that lets you collect, analyze, and report on DFIR incidents. It runs on a desktop or laptop computer. Refer to Standard Installation for steps on installing this version.

  • Standard Pro is a more scalable version of Standard and allows you to batch up data sets to add. It runs on a desktop or laptop computer. If you have this version, you should follow the steps in this manual for Standard unless Standard Pro is called out. Refer to Standard Installation for steps on installing this version.

  • Team is the enterprise version that uses a server and several clients. The user experience is the same, so most of this document applies to both Standard and Team. Refer to Configuring a Team Environment on installing this version.

  • Lite is the free version that does not have analytics.

Table of Contents