STEELCENTRAL NETPROFILER ADVANCED SECURITY MODULE

Threat Detection

Built with security operations teams in mind, this new software module for SteelCentral NetProfiler provides the following rich threat detection capabilities in a single, easy-to-use solution:

• Threat Intelligence – alerts when your system communicates with blacklisted communications (known malware download sites, command & control sites, etc.) so you investigate and take action quickly.
• Distributed Denial of Service (DDoS) detection – quickly and accurately identifies a broad range of DDoS attacks so you can make informed mitigation decisions to end interruptions sooner.
• Network security analytics – baselines traffic and automatically identifies threats that generate unusual patterns, such as unexpected new services, hosts, or connections.
• Cyber Threat Hunting – proactively search for hidden security threats on your network before they become business-impacting events!
• Incident forensics – provides full historical details so you get the complete scope of the attack; drill into the packets for even more details. 

Security Integrations

DDoS detection requires fast mitigation, therefore the NetProfiler Advance Security Module offers out-of-the-box integrations with

• A10 Networks Thunder TPS™ to mitigate up to terabit DDoS attacks at the network edge
• Neustar SiteProtect NG provides 11.8+ Tbps of DDoS mitigation - the largest dedicated data scrubbing network in the world
• Verisign CloudSign, a cloud-based mitigation system that provides comprehensive protection against network- and application-layer DDoS attacks

Additionally, integrate with your favorite SIEM/syslog vendors:

• SIEM/Syslogs – Send your network security analytics events to your SIEMs such as Splunk, ArcSight, QRadar, etc. to correlate syslog events with your network-based threats