Endace partnership with Plixer delivers security forensics

Endace partnership with Plixer delivers enhanced deep-dive security forensics

Integration between Plixer ‘s Scrutinizer and EndaceProbe network recorders lets analysts pivot from alerts direct to recorded packets for forensic analysis of security events

AUCKLAND, New Zealand — June 08, 2016 — Endace, a world leader in high-speed network monitoring and recording technology, today announced a partnership with Plixer, a leading security analytics company. The partnership provides integration between Plixer’s Scrutinizer™, flow-based analysis solutions, and EndaceProbe™ high-performance Network Recorders to improve the ability for SecOps and NetOps teams to investigate network security and performance issues faster and more accurately.

Using Flow-based data, Scrutinizer delivers deep insight into user, application and network device behavior and improves real-time situational awareness for SecOps and NetOps teams. Scrutinizer’s built-in Flow Analytics™ performs behavioral analysis on collected flows to identify suspicious behavior on the network.

EndaceProbes, deployed across the network, capture and record a 100% accurate record of network traffic, providing a full, packet-level back-in-time history of network activity that is a perfect complement to Scrutinizer’s flow based monitoring and alerting.

“The ability to pivot from high-level security alerts directly to a detailed forensic examination of packet-level data is critical to enabling SecOps and NetOps teams to see exactly what’s happening in real-time and allowing them to respond to events quickly,” says Endace CEO, Stuart Wilson.

Integration between EndaceProbes and Scrutinizer allows users to pivot from an event of interest in the Scrutinizer UI directly to the related packets recorded on EndaceProbes. Packets of interest can be retrieved from the EndaceProbes seamlessly from within the Scrutinizer user interface, allowing immediate, packet-level examination using Wireshark, EndacePackets or other packet-level analysis tools.

“The combination of intelligent flow analysis and alerting and immediate access to a detailed back-in-time traffic history delivers unparalleled visibility into network activity,” says Scott Brown, director of sales, Plixer. “This integration optimizes the workflow for SecOps and NetOps teams, enabling faster, more accurate analysis, improved response times and reduced resolution times for network security and performance issues.”

ends