NetFlow Ninjas Blog

Category: IPFIX IPFIX RSS Feed

The Cost of Incomplete

POSTED BY Matt McKinley on 01.16.2013  |  0 comments
By collecting and analyzing NetFlow with advanced solutions like Lancope’s StealthWatch System, organizations can fill in the gaps left by conventional security controls. READ MORE
CATEGORIES General Interest, IPFIX, NetFlow, Network Security, Network Visibility
TAGS network security, network visibility

Anatomy of an SQL Injection

POSTED BY Charles Herring on 11.19.2012  |  0 comments
Intelligent NetFlow analysis can provide deep visibility into an SQL injection at several stages of the assault. The mitigation can be automatic or authorized by an operator. Mitigation can range from blocking the traffic at a firewall to advanced actions including routing traffic into a Honeynet. NetFlow analysis provides the actionable intelligence needed to prevent, mitigate and respond to data exfiltration of this type. READ MORE
CATEGORIES IPFIX, NetFlow, Network Security, Network Visibility, StealthWatch
TAGS stealthwatch, lancope, netflow, network security, network visibility, data loss, data exfiltration, data leakage, fingerprinting, sql injection

Are My Computers for Rent?

POSTED BY Charles Herring on 11.07.2012  |  0 comments
In a recent blog entry, Brian Krebs revealed that a Russian-based service is selling the IP addresses, usernames and passwords of computers inside organizations including Fortune 500 companies using the Remote Desktop Protocol (RDP). In the comments section, some readers asked how they can check if their servers are listed in the service’s database. While there certainly is merit in that type of diligence, they could better answer that question by reviewing their own network surveillance data. It is a question that intelligent analysis of enterprise NetFlow/IPFIX can quickly answer. READ MORE
CATEGORIES About Lancope, General Interest, IPFIX, NetFlow, Network Visibility, StealthWatch, Virtualization
TAGS netflow, network security, network visibility, malware, policy management, stealthlabs

No Matter How Frequent or Infrequent, Insider Threats Come at a Cost

POSTED BY David Brooks on 11.01.2012  |  0 comments
If you have paid attention to the security landscape over the past decade, even in passing, you have likely picked up on the idea that the insider threat makes up at least some measurable percentage of concern within an organization's security framework. Lancope’s StealthWatch System brings all of this visibility under the same single pane of glass, and correlates anomalous host behavior with user and device information to help solve the insider threat headache. READ MORE
CATEGORIES General Interest, In The News, IPFIX, NetFlow, Network Security, Virtualization
TAGS netflow, network security, network visibility, insider threat, threat detection, threat context

Internal IP Reputation for Combating Advanced Threats

POSTED BY Matt McKinley on 10.26.2012  |  0 comments
The link between network visibility and network security is critical to tackling threats facing networks today. Lancope’s StealthWatch System, unlike other solutions such as Riverbed Cascade, provides the missing security piece of network visibility. READ MORE
CATEGORIES General Interest, IPFIX, NetFlow, Network Performance Monitoring, Network Security, Network Visibility, Press Releases, StealthWatch
TAGS stealthwatch, lancope, netflow, network security, network visibility, apts, advanced threats, concern index, ip reputation, competitive analysis