About Trellix
Trellix is a cybersecurity company formed from the merger of McAfee Enterprise and FireEye, combining decades of threat intelligence heritage with extended detection and response (XDR) capabilities trusted by enterprises and governments globally. With a living security platform that adapts continuously to the evolving threat landscape through AI-powered threat detection and tightly integrated security operations, Trellix is a strategic security partner for large organizations facing sophisticated adversaries. Teams looking to integrate with Trellix or build a Trellix integration can use Synqly to access normalized endpoint detection, threat intelligence, and security event data through a standardized connector.
About the Trellix ePolicy Orchestrator Integration
Connect Trellix with Synqly to automate workflows, streamline data synchronization, and support key use cases in EDR. This integration allows you to quickly configure connectivity, leverage supported capabilities, and access technical docs.
Integration Use Cases
Get Endpoint
Gets a single endpoint assets matching the UID from the token-linked EDR source.
Quarantine Endpoints
Connect or disconnect one or more endpoints assets to the network, allowing or disallowing connections.
Query Alerts
Returns a list of alerts that match the query from the token-linked EDR source.
Query Endpoints
Returns a list of endpoint assets matching the query from the token-linked EDR source.
Query Threat Events
Returns a list of threats that match the query from the token-linked EDR source.