« Online Solitaire
basin shopping »

I have been thinking about the search engines the other day, then I found that Net/FSE is the first commercial search engine for enterprise network data to focus on security incident response by harnessing the power of netflow security. This will be very useful for the company to know. Here is the press release.

Packet Analytics Launches Net/FSE, Free Downloadable
Network Forensic Search Engine

Browser-Based Workflow Solution Provides Security Analysts with Real-Time Forensic and
Analysis of Terabytes of NetFlow Data

Santa Fe, N.M. – January 22, 2008 – Packet Analytics, a network security tools company today launched Net/FSE, the Network Forensic Search Engine. Net/FSE is the first commercial search engine for enterprise network data to focus on security incident response by harnessing the power of NetFlow data. It is designed to exploit the forensic potential of NetFlow data to dig deep into network alerts.

A browser-based workflow tool for security analysts, Net/FSE employs proprietary search technology licensed exclusively from Los Alamos National Laboratory where it was developed and battle tested for five years. Net/FSE allows network security analysts to respond rapidly to network alerts and anomalies by analyzing terabytes of NetFlow router data in real-time through a highly scalable search engine. A commonly overlooked network data resource because of its voluminous nature and predominate use in IT engineering operations, NetFlow data can be a powerful source of forensic information for security analysis.

“We purchased and deployed Net/FSE at Los Alamos National Bank to give us visibility into our NetFlow router data in addition to our other network data,” said David McCullough, Chief Technical Officer for Los Alamos National Bank. “Before Net/FSE when we needed to perform a network security investigation it was taking us as much as day to answer one investigative question. Now, we’re able to answer that same question in a matter of minutes.”

“Our research consistently indicates that flow data, including NetFlow, will be increasingly leveraged to improve network security and operations,” said Derek E. Brink, vice president and research director for IT Security, Aberdeen Group. “Overall, organizations surveyed indicate about 90% year-over-year growth in deployment of solutions that leverage network flow data, based on planned use in the next 12 months versus current use.”

Typically, when a network security alert is generated in an enterprise firewall, intrusion detection system or security information management system the security analysts do not have access to the necessary context that allows them to definitively and effectively respond to the event. Net/FSE allows analysts to collect and quickly search all of their NetFlow and other network data to determine the impact of the alert and effectively respond.

“Security breaches can happen to any company. It’s not a matter of if, but when they will occur,” said Andy Alsop, CEO of Packet Analytics. “Net/FSE was built by security analysts for security analysts so that enterprises have access to advanced search capabilities over terabytes of NetFlow router data. Our product will save analysts a significant amount of time in their routine alert investigations, making them more efficient and dramatically decreasing response time.”

Net/FSE requires little or no administration and can be quickly installed by the customer on commodity servers running a Linux operating system. Deployed as a browser-based solution, analysts can search through terabytes of data from anywhere on the network.

Net/FSE is available as a free download with full functionality at www.packetanalytics.com.

About Packet Analytics

Packet Analytics provides tools and solutions to enterprises that dramatically increase the security of their network operations by mitigating the effects of security breaches. The company’s Network Forensic Search Engine or Net/FSE is the first commercial security search engine for NetFlow log data and is based on technology licensed exclusively from Los Alamos National Laboratory. Using proprietary distributed search algorithms, Net/FSE dramatically reduces exposure to significant business risk by enabling security specialists to quickly identify the extent of a security breach. The company is based in Santa Fe, N.M. Visit www.packetanalytics.com for more information.

Posted on January 23rd, 2008 | filed under Uncategorized | Trackback |

Leave a Reply

You must be logged in to post a comment.

EWEPS: Eric Warren Frost World Wide Web Experimental Projects Server

Welcome to the EWF WWW Experimental Projects Server (EWEPS). This site is intended to be a platform for my exploration of web technologies and as such parts may appear broken at times, I do not intend to put little construction zone icons anywhere, so be forewarned.

EWEPS is running on Windows 2000. If you'd like to try to hack this site or server I request that you let me know and I will let you let you put a message and/or link (in good taste) on the top of the page, so please start hacking.

Last updated April 10, 2008.

Info Moving moving storage and relocation services. Get multiple quotes from movers in your area.
Click here for more information on Self Storage Options

Today's Destinations -

Unbeatable Car Insurance or Your Money Back! We Find You The Lowest Price Car Insurance Guaranteed!

Quality surgical and non surgical cosmetic procedures from one of the UK's top cosmetic surgery / breast enlargement teams.

Guide to Car Leasing

Diamond eternity rings
Stunning diamond eternity rings. Choose between yellow and white gold or platinum. Up to 50% off high street prices!


Looking for Moving Companies or Movers ?
Movers.com for local movers, Long Distance moves, across states, small shipments, Auto Shipping, Overseas, Moving Boxes, and Truck Rentals & Storage.


Microforge Network Management Tools

Complete GPS Resources UK: BLUETOOTH GPS, CAR GPS, GPS SYSTEM, GPS SOFTWARE, PDA GPS, GARMIN

Successful hacks

None so far. Impress your friends, be a star -- be the first to make EWEPS go oops!

Update: The /var/log directory was found to be mysteriously missing on January 3, 2000 and certain services (like httpd!) would fail to start... Jon reformatted the hard drive and reinstalled Linux -- we have applied all the security updates this time.

Update 2: Puppy has been running solid like a rock since, well, that Blaster SQL worm or whatever its name was. We've done fairly well keeping ourselves updated though I will admit not having done much hardening. Heck for all I know I am already a "zombie" for spammers etc though I doubt it.

Interesting tidbits and news

My e-mail ISP, Voyager.net, did not renew the cnsnet.com domain (which I have used for e-mail the past several years) so I snuck in and bought it out from under them. Not sure how Network Solutions handles this or how Voyager.net will respond. I hope to see my name on the Whois information in the next day or so.. check it out here.

EWEPS Showcase

This will be a bunch of junk where I try out different web stuff. Too get started, here's a animated gif map showing my building.

     Statler

The first is the eggdrop bot which sits in #muppeteer on EFFNet. Statler will generate pages related to conversation that appears in the channel and also periodically create other pages like to look up the weather and check the MapInfo stock price, meaningless, idiotic stuff like that. Here's a Java IRC client so you can say hi to Statler yourself! [Ed. note: Statler's been let go due to lack of IP addresses.. he may find a home via a host under hrandassociates.com in the near future.]

     Current Weather

This jpg is generated on-the-fly by my home weather radar kit and mapping software. You may link to this image in your own home page with my permission.

Also, here's an experimental Java animated version. This will take some moments to load.

     SVG Elves

Lots of learned and clever elves crafting magic with SVG, developed and maintained by a short, skinny guy who sleeps on my couch (not kidding).

     Elfcorp

     MP2K Magazine - The Magazine for MapPoint

MP2K Magazine covers topics on MapPoint and MapPoint programming.

     Will Frost

Links to resources on the web.

     MapInfo

Car .NET news and information.

     MapPoint Blog

A MapPoint blog.

     MapPoint 2009

Another MapPoint blog about MapPoint 2009.

     MapPoint Blog

Yet another MapPoint blog.

     Bugaboo Strollers

Bugaboo Strollers.

     MapInfo-L

Directions Community sites and news.

Humor

This might be a collection of e-mail forwards, mini-games and images, links to other sites, etc. of stuff that amuses me and might amuse (or offend) you. For starters, here's some stuff. Featured item is Stress Relief.

Life Tip

"There is no need to slump through life with a bad back. Massage chairs can give you daily relief in a way that no other piece of home furniture can. But a couple of minutes every day probably isn't enough if you aren't sleeping in a way that is conducive to caring for you spine. A foam mattress will conform to the shape of your particular body, and cradle you for a perfect night's rest."

Resources

This is the start of my portable 'Favorites' list.

About me

I am about 6'3" and like to swim. I might put a picture here, as well as a resume.

My e-mail address was on the top but since some people may feel dizzy without a blurb at the bottom for balance and to list a contact person here it is: e-mail.