FTK® Connect

Automate Forensic Collection & Incident Response

Features & Capabilities

Automate Time-Intensive Manual Workflows
Automate Time-Intensive Manual Workflows

Automate time-intensive manual processes in your e-discovery and incident response workflows with our full-featured API.

Learn more


Accelerated Post-Breach Investigation
Accelerated Post-Breach Investigation

Dramatically reduce the time needed to start a case after your SIEM tool triggers an event. Use the API to integrate seamlessly with your cybersecurity platform (such as Splunk or Cortex) to kick off a post-breach investigation from the first moments after an intrusion has been detected. The API can initiate the immediate collection of electronic endpoint data, preserving evidence related to the root cause of a data breach and saves precious time in the initial stages of incident response.

Learn more


Integrate With E-Discovery Systems
Integrate With E-Discovery Systems

Integrate with e-discovery systems to automate a standard endpoint collection after someone is put on a litigation hold. This type of automation allows less experienced users to use a litigation hold functionality but still preserve endpoint data automatically.

Learn more


Integrate Management Tools With FTK® Lab
Integrate Management Tools With FTK® Lab

Integrate your management tools with FTK® Lab to automatically create cases and process jobs with defined organization standards, dramatically cutting the time users wait for jobs to be completed.

Learn more


Representational State Transfer (REST) Architecture
Representational State Transfer (REST) Architecture

The API uses the Representational State Transfer (REST) architecture to access and manipulate data based on uniform and predefined operations. The RESTful API is stateless, so each request contains all information necessary to perform the requested action.

Learn more


Request A Meeting

See What Our Clients Are Saying

Scott Sattler
Forensic Consultant, SecureLabs.net

"The new AccessData (An Exterro Company) release contains a critical API option that will allow our team to integrate our SIEM platform with our forensic platform. This capability enables us to perform automated response to events detected with SIEM platforms, such as Arcsight® or Splunk®. This feature will save us about 40 minutes of analyst time per incident. The API integration with our SIEM is an important force-multiplier for our existing staff by leveraging the power of automation."

Explore Other Exterro Clients