You are not going to stop the infections. With most security efforts being reactive, having an incident response system is a paramount concern. Constant network surveillance means massive amounts of data and acquiring specific details on a threat – fast. Scrutinizer is the turn to solution for forensic incident response and stopping data leaks.
The Scrutinizer™ incident response system provides forensic insight into the users and applications that are raising suspicions or causing the most congestion problems. Using flow technologies such as NetFlow, IPFIX, sFlow, J-Flow and others, Scrutinizer is able to collect, archive and quickly retrieve the traffic details you need surrounding an incident.
FlowPro™ is inserted into areas of the network when visibility is needed. It uses a deep packet inspection (DPI) to compile a flow cache, and exports traffic and threat details reflecting 100% of all communications that pass by. FlowPro is a great complement to the Scrutinizer Incident Response System and ensures the security team has insight where they need it.
The Flow Replicator™ allows numerous streams of log data to be transparently replicated to several destinations. It also acts as a syslog to IPFIX gateway by listening for syslogs, extracting the details and forwarding them on inside IPFIX datagrams. This all-inclusive network appliance is equipped with a simple, web-based user interface for administration.