Capabilities:
Full Visibility
You can’t catch what you cannot see.
- Full packet capture on network
- Complete visibility to inbound email
- Targeted scans of end points
Dynamic Detection
More ways to catch more attacks
- Signature
- Reputation
- Behavior
- Analytics
Delivery:
Network
Out of band, invisible detection
- Full packet capture
- Bro, Suricata, YARA, Reputation, Behavior, and Analytic based detection
- 500Mb, 1Gb, 10Gb appliances
- Integration with existing SIEM
Multi-layer detection for inbound email.
- Spam and AV
- Bro, Suricata, YARA, Reputation, Behavior, and Analytic based detection
- Cloud based deployment
Endpoint
Agentless scanning capabilities.
- Appliance and virtual deployments
- Full visibility: storage, memory, running processes, open connections, etc.
- Windows, Mac, NIX
DNS
External DNS resolution services.
- Blacklist, Greylist, Whitelist capabilities
- Attack containment
- Command and control disruption