Remote Acquisition
Remotely acquire 120+ evidence type including RAM image, Event Logs, Browser History, and Application Artefacts with a single mouse click.
Triage with YARA
Search YARA rules both in memory and file-system at scale.
Triggers for SIEM/SOAR
Easily integrate AIR into your existing SIEM/SOAR solutions with webhooks.
Schedule Acquisitions
Schedule daily, weekly or monthly tasks for automatically acquiring evidence or performing triage on your critical assets.
Acquisition Profiles
Create acquisition profiles based on your needs.
Active Directory
Fully integrates with Active Directory and Syslog.
Binalyze is delighted to announce we are joining the EU’s ECHO Network project as a vendor, making us the first Digital Forensics and Incident Response
With the release of Binalyze AIR v1.8.0, we are introducing network capture capabilities to the acquisition profiles so you can capture both Network Flow (TCP/UDP
Binalyze AIR v1.8.0 RC is now available. The full production version of AIR 1.8.0 will be available on 18th August. You can update directly from
