dido:public:ra:xapend:xapend.e_tools:netwrkanal
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
dido:public:ra:xapend:xapend.e_tools:netwrkanal [2021/08/09 15:00] murphy |
dido:public:ra:xapend:xapend.e_tools:netwrkanal [2022/01/19 10:48] (current) nick |
||
|---|---|---|---|
| Line 1: | Line 1: | ||
| ====== Tools: Network Traffic Analysis ====== | ====== Tools: Network Traffic Analysis ====== | ||
| - | [[dido:public:ra:xapend:xapend.e_tools| Return to Tools Area]] | + | [[dido:public:ra:xapend:xapend.e_tools:start| Return to Tools Area]] |
| [[dido:public:ra:xapend:xapend.a_glossary:n:network_traffic_analyzer]]s are generally deployed within Enterprises. Although having many of the characteristics of a single, united Enterprise, DIDOs are naturally more of a federation or coalition of the willing spread across the [[dido:public:ra:xapend:xapend.a_glossary:i:internet|internet]]. This is why virtualized testing is so important. | [[dido:public:ra:xapend:xapend.a_glossary:n:network_traffic_analyzer]]s are generally deployed within Enterprises. Although having many of the characteristics of a single, united Enterprise, DIDOs are naturally more of a federation or coalition of the willing spread across the [[dido:public:ra:xapend:xapend.a_glossary:i:internet|internet]]. This is why virtualized testing is so important. | ||
| Line 6: | Line 6: | ||
| Source: The 14 Best Network Traffic Analysis Solutions for 2019 and Beyond, September 17, 2019, [[https://solutionsreview.com/network-monitoring/the-14-best-network-traffic-analysis-solutions-for-2019-and-beyond/]] | Source: The 14 Best Network Traffic Analysis Solutions for 2019 and Beyond, September 17, 2019, [[https://solutionsreview.com/network-monitoring/the-14-best-network-traffic-analysis-solutions-for-2019-and-beyond/]] | ||
| - | * //**[[https://awakesecurity.com/platform/ | Awake Security Platform]]** is a network traffic analysis solution that focuses on discovering, assessing, and processing security threats. The tool is broken down into three parts: Awake Sensors, which continuously monitor and collect data from devices, apps, and users; Awake Nucleus, which analyzes that data to understand behaviors and attributes of entities and applying deep forensics; and Ava, a privacy-aware security expert system that applies [[dido:public:ra:xapend:xapend.a_glossary:m:machine_learning|machine learning]] to collected data.// | + | * //**[[https://awakesecurity.com/platform/ | Awake Security Platform]]** is a network traffic analysis solution that focuses on discovering, assessing, and processing security cyberthreats. The tool is broken down into three parts: Awake Sensors, which continuously monitor and collect data from devices, apps, and users; Awake Nucleus, which analyzes that data to understand behaviors and attributes of entities and applying deep forensics; and Ava, a privacy-aware security expert system that applies [[dido:public:ra:xapend:xapend.a_glossary:m:machine_learning|machine learning]] to collected data.// |
| - | * //**[[https://www.corelight.com/products/corelight-sensors | Corelight]]** is a security-focused network traffic analysis provider that uses the open-source network security monitor Zeek as its basis. Corelight Sensors convert network traffic data into logs and extracted files which can all be managed through the Corelight Fleet Manager. Through the Fleet Manager, admins can define custom groups, assign individual roles, and set access levels. Corelight Sensors come either as hardware for networks, as a virtual sensor, or as a cloud traffic monitor for AWS.// | + | * //**[[https://www.corelight.com/products/corelight-sensors | Corelight]]** is a security-focused network traffic analysis provider that uses the open-source [[dido:public:ra:xapend:xapend.a_glossary:n:networksecurity|network security]] monitor Zeek as its basis. Corelight Sensors convert network traffic data into logs and extracted files which can all be managed through the Corelight Fleet Manager. Through the Fleet Manager, admins can define custom groups, assign individual roles, and set access levels. Corelight Sensors come either as hardware for networks, as a virtual sensor, or as a cloud traffic monitor for AWS.// |
| - | * //**[[https://www.flowmon.com/en/solutions/use-case/netflow-ipfix/network-traffic-monitoring | Flowmon]]** is a network performance and security solution provider that offers network traffic monitoring and analysis capabilities. The solution offers real-time NetFlow and IPFIX monitoring and analyzes network traffic data from a physical, virtual, or cloud infrastructure. It also gathers flow data statistics generated by routers, switches, or standalone hardware probes. Users can add self-defined filters that set parameters for data collection based on what data the user wants to look at.// | + | * //**[[https://www.flowmon.com/en/solutions/use-case/netflow-ipfix/network-traffic-monitoring | Flowmon]]** is a [[dido:public:ra:xapend:xapend.a_glossary:n:netperform|network performance]] and security solution provider that offers network traffic monitoring and analysis capabilities. The solution offers real-time NetFlow and [[dido:public:ra:xapend:xapend.b_stds:tech:ietf:7011]] monitoring and analyzes network traffic data from a physical, virtual, or cloud infrastructure. It also gathers flow data statistics generated by routers, switches, or standalone hardware probes. Users can add self-defined filters that set parameters for data collection based on what data the user wants to look at.// |
| - | * //**[[https://www.kentik.com/solutions/network-traffic-analysis/| Kentik Platform]]** is an AIOps platform that applies [[dido:public:ra:xapend:xapend.a_glossary:a:ai]] and machine learning capabilities to network traffic analysis. The solution analyzes downstream and transit traffic flows and helps enterprises identify peering opportunities, optimize their network routing, and gain more control over their service performance. They also offer network traffic engineering capabilities to maximize resource utilization and traffic delivery, and insights into network capacity to help drive cost-efficient traffic flow.// | + | * //**[[https://www.kentik.com/solutions/network-traffic-analysis/| Kentik Platform]]** is an AIOps platform that applies [[dido:public:ra:xapend:xapend.a_glossary:a:ai]] and machine learning capabilities to network traffic analysis. The solution analyzes downstream and transit traffic flows and helps enterprises identify peering opportunities, optimize their network routing, and gain more control over their service [[dido:public:ra:xapend:xapend.a_glossary:p:performance|performance]]. They also offer network traffic engineering capabilities to maximize resource utilization and traffic delivery, and insights into network capacity to help drive cost-efficient traffic flow.// |
| - | * //**[[https://logrhythm.com/products/logrhythm-network-xdr/ | LogRhythm NetworkXDR]]** is a security-focused network traffic analysis solution that focuses on threat detection and analytics. It offers real-time network traffic analysis via network sensors that allow for distributed traffic data collection and reporting. The solution is designed to increase network traffic visibility with application [[dido:public:ra:xapend:xapend.a_glossary:i:identification|identification]], app-aware [[dido:public:ra:xapend:xapend.a_glossary:m:metadata|metadata]], and full packet capture. NetworkXDR also integrates with LogRhythm’s NextGen SIEM Platform to help identify security threats.// | + | * //**[[https://logrhythm.com/products/logrhythm-network-xdr/ | LogRhythm NetworkXDR]]** is a security-focused network traffic analysis solution that focuses on cyberthreat detection and analytics. It offers real-time network traffic analysis via network sensors that allow for distributed traffic data collection and reporting. The solution is designed to increase network traffic visibility with application [[dido:public:ra:xapend:xapend.a_glossary:i:identification|identification]], app-aware [[dido:public:ra:xapend:xapend.a_glossary:m:metadata|metadata]], and full packet capture. NetworkXDR also integrates with LogRhythm’s NextGen SIEM Platform to help identify security cyberthreats.// |
| * //**[[https://www.manageengine.com/products/netflow/ | ManageEngine Netflow Analyzer]]** is a bandwidth monitoring tool that is built on network traffic monitoring and analysis functions. The program implements network flow analysis to examine [[dido:public:ra:xapend:xapend.a_glossary:b:bandwidth|bandwidth]] usage, network data, and traffic patterns. It condenses information about which users and devices are using available bandwidth on your network – as well as what they’re using it for. The solution also features network forensics and security features, [[dido:public:ra:xapend:xapend.a_glossary:a:application|application]] monitoring, and data capacity planning and billing capabilities.// | * //**[[https://www.manageengine.com/products/netflow/ | ManageEngine Netflow Analyzer]]** is a bandwidth monitoring tool that is built on network traffic monitoring and analysis functions. The program implements network flow analysis to examine [[dido:public:ra:xapend:xapend.a_glossary:b:bandwidth|bandwidth]] usage, network data, and traffic patterns. It condenses information about which users and devices are using available bandwidth on your network – as well as what they’re using it for. The solution also features network forensics and security features, [[dido:public:ra:xapend:xapend.a_glossary:a:application|application]] monitoring, and data capacity planning and billing capabilities.// | ||
| Line 22: | Line 22: | ||
| * //**[[https://www.netscout.com/network-monitoring |NETSCOUT]]** is a service [[dido:public:ra:xapend:xapend.a_glossary:a:assurance|assurance]] and network monitoring vendor that provides network traffic data inspection and analysis. The solution continuously inspects traffic data and analyzes large volumes of data through Layer 7/8 deep packet inspection, load balancing and acceleration, aggregation and desegregation, and packet decoding. NETSCOUT also utilizes its Adaptive Service Intelligence (ASI) technology that uses traffic data to gain visibility into user communities, services, and IT assets.// | * //**[[https://www.netscout.com/network-monitoring |NETSCOUT]]** is a service [[dido:public:ra:xapend:xapend.a_glossary:a:assurance|assurance]] and network monitoring vendor that provides network traffic data inspection and analysis. The solution continuously inspects traffic data and analyzes large volumes of data through Layer 7/8 deep packet inspection, load balancing and acceleration, aggregation and desegregation, and packet decoding. NETSCOUT also utilizes its Adaptive Service Intelligence (ASI) technology that uses traffic data to gain visibility into user communities, services, and IT assets.// | ||
| - | * //**[[https://www.ntop.org/products/traffic-analysis/ntop/ | ntopng]]** is an open-source network traffic probe and analysis tool. The traffic probe sorts network traffic into different criteria, including IP addresses and throughput. By characterizing network traffic, your enterprise can easily determine different network statistics that are affecting your network; the solution can reference real-time and historical traffic data in this analysis. While ntopng’s Community version is open source, Professional and Enterprise versions are also available.// | + | * //**[[https://www.ntop.org/products/traffic-analysis/ntop/ | ntopng]]** is an open-source network traffic probe and analysis tool. The traffic probe sorts network traffic into different criteria, including IP addresses and [[dido:public:ra:xapend:xapend.a_glossary:t:thruput|throughput]]. By characterizing network traffic, your enterprise can easily determine different network statistics that are affecting your network; the solution can reference real-time and historical traffic data in this analysis. While ntopng’s Community version is open source, Professional and Enterprise versions are also available.// |
| - | * //**[[https://www.paessler.com/network_traffic_analyzer | Paessler PRTG]]** is an IT monitoring tool that includes network traffic analysis functionality. PRTG’s network traffic analysis system helps administrators track network capacity and seeing how much of their data analysis is actually being used. The solution combines SNMP monitoring, packet sniffing, and data flow technologies like NetFlow, IPFIX, jFlow, and sFlow for their traffic analysis capabilities; it displays traffic data alongside the other performance and security insights it uncovers.// | + | * //**[[https://www.paessler.com/network_traffic_analyzer | Paessler PRTG]]** is an IT monitoring tool that includes network traffic analysis functionality. PRTG’s network traffic analysis system helps administrators track network capacity and seeing how much of their data analysis is actually being used. The solution combines SNMP monitoring, packet sniffing, and data flow technologies like NetFlow, [[dido:public:ra:xapend:xapend.b_stds:tech:ietf:7011]], jFlow, and sFlow for their traffic analysis capabilities; it displays traffic data alongside the other performance and security insights it uncovers.// |
| * //**[[https://www.plixer.com/products/scrutinizer/ | Plixer Scrutinizer]]** is a network traffic analysis system that gathers network traffic flow and metadata across an entire network infrastructure. The solution collects data from SD-WAN, cloud, firewalls, routers, data centers, probes, data collectors, and wired/wireless edges. Scrutinizer then takes this data and provides valuable security and performance insights. This tool can help IT teams optimize network and [[dido:public:ra:xapend:xapend.a_glossary:a:appperform|application performance]] by providing end-to-end network visibility.// | * //**[[https://www.plixer.com/products/scrutinizer/ | Plixer Scrutinizer]]** is a network traffic analysis system that gathers network traffic flow and metadata across an entire network infrastructure. The solution collects data from SD-WAN, cloud, firewalls, routers, data centers, probes, data collectors, and wired/wireless edges. Scrutinizer then takes this data and provides valuable security and performance insights. This tool can help IT teams optimize network and [[dido:public:ra:xapend:xapend.a_glossary:a:appperform|application performance]] by providing end-to-end network visibility.// | ||
dido/public/ra/xapend/xapend.e_tools/netwrkanal.1628535607.txt.gz · Last modified: 2021/08/09 15:00 by murphy
