Inspekt Security Moves Raw Packet Capture Into the Cloud

Share Article

Inspekt Network Replay redefines information security auditing.

Inspekt offers a service-based ESIM/NBAD/LM hybrid

Inspekt Security, the cloud-based Security Information and Event Management (SIEM) company, today announced it has joined forces with Solera Networks, network memory leader, to offer its latest add-on feature, Inspekt Network Replay, which seamlessly integrates hosted security event monitoring with full fidelity traffic reconstruction.

"Inspekt offers a service-based ESIM/NBAD/LM hybrid," said Nick Selby, Director of Research Operations & Research Director, Enterprise Security at The 451 Group. "Adding Solera Networks' capture capabilities will provide context to specific alerts and a more accurate picture of network events."

With Inspekt Network Replay, Inspekt Security can now provide InspektOne users access to all related packets for every event triggered, without requiring any hardware at the customer site.

This provides forensic investigators with an unprecedented level of detail, and the ability to combine the machine learning algorithms of Inspekt Security with downloadable PCAP files for deep packet investigation, redefining practical information security auditing.

"Unlike other capture solutions we have reviewed, only Solera Networks was able to provide a solution that does not rely on proprietary hardware," said Marco MacArtney, Inspekt Security CEO. "Their software-based solution for complete packet capture was a perfect fit in our 'in the cloud' service offering."

Every time an event is triggered using Inspekt Security's proprietary machine learning algorithms, a PCAP file with the raw packets for the event (+/- five seconds) is generated using the Solera Networks Capture Stackā„¢ linked to the customer log data. If a full forensic investigation is required for en event, the forensic investigator can download the relevant PCAP file and analyze the packets in his tool of choice - for instance Wireshark. Being a cloud-based service, the Inspekt system never runs out of disk space and the PCAP files can be stored indefinitely.

Inspekt Network Replay is an add-on feature to the InspektOne SIEM solution that will be available for all existing and new customers. Pricing starts at $500/month.

About Inspekt Security
Inspekt Security delivers an easy to use, easy to deploy security information and event management (SIEM) solution as an "in the cloud" service offering. With zero hardware at the customer site, unlimited storage capacity, and machine learning technology to find the interesting "needles in the haystack" of log data, Inspekt Security offers a uniquely scalable solution to the market. An innovative user interface, and low monthly fees secure access to network security information in the easiest possible way. For more information on Inspekt Security visit http://www.inspektsecurity.com

About Solera Networks
Solera Networks' DS Series is a line of high-performance network appliances, including software-only virtual appliances, which capture, record and archive 100% of network traffic at speeds up to 10Gbps. The data is then accessible instantly via Solera Networks' search, alert and archive interfaces, or via any standards-based security, forensics, compliance, analytics or network management application. For more information on Solera Networks, visit http://www.soleranetworks.com.

###

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Marco MacArtney
Visit website