EndaceProbe Release Changes the Game for Network Forensics

Latest software from Endace extends support for threat hunting and security incident response with easy file reconstruction, log generation and multi-tenant support.

London, UK, Austin, TX and Auckland, NZ: March 2, 2022: Packet capture authority, Endace, today announced OSm™ 7.1 for the EndaceProbe™ Analytics Platform. This new release enables analysts at all levels to gain deeper insight into malicious network activity from packet capture data quickly and easily.

The new features benefit customers by:

  • Enabling security analysts to easily reconstruct and extract files from recorded packet data to rapidly understand the nature and extent of threats or breaches. Analysts can analyze the actual files – malware, ransomware, executables, zip archives, exfiltrated data, and more – used by attackers to compromise user and network security and steal data. This gives analysts certainty about exactly what happened. See a short demo video here: https://www2.endace.com/osm7.1-endace-vision-demo
  • Allowing analysts to generate detailed logs – including DNS, HTTPS, TLS, SMTP, database transactions, and many others – from recorded packet data. This gives analysts rich contextual insight into activity that has occurred across the network and enables more accurate threat assessment and response. Read more here: https://www2.endace.com/osm7.1-making-forensics-easy-blog
  • Enabling MSSPs or organizations with multiple tenants to securely share packet recording infrastructure. This allows teams from different organizations or divisions to take advantage of continuous packet recording while keeping each organization’s data separate. Read more here: https://www2.endace.com/osm7.1-endace-multi-tenancy-blog

Continuous, always on, packet capture has always been the gold standard for understanding the threats traversing networks. However, until now, packet analysis has often been limited to senior security analysts with deep experience in packet forensics. The OSm 7.1 release makes packet capture more useful to security team members with little or no packet forensics experience. Junior analysts can reconstruct, extract and save files that have traversed the network along with easy-to-understand logs. This lets them quickly reconstruct and analyze malicious activity, analyze files, and see exfiltrated data without needing deep packet forensics expertise.

“Recorded network traffic is key to solving the most complex and threatening security incidents,” says Cary Wright, VP of Products at Endace. “These new capabilities, combined with the EndaceProbe platform’s always-on, global-scale network recording puts vital evidence in the hands of SecOps teams – so they can respond to threats faster and with greater confidence.”

OSm 7.1 also extends the power of always-on packet recording to multi-tenant environments such as MSSPs, federal or government organizations securing multiple entities, or large enterprises with multiple divisions. Multiple entities can now share a common recording infrastructure and each securely search, access and analyze only their own traffic.

OSm 7.1 is available immediately for EndaceProbe customers. For more information, visit www.endace.com/products

Editor

Lisa Baker is the Editor of International Business News. As the Owner of Need to See IT Publishing, Lisa is an experienced business and technology journalist and publisher.

IT Services

The Nuvias Group Appointed Sole Distribution Partner for Armis across UK and DACH

Armis, the leading unified asset visibility and security platform, has selected the Nuvias Group as its distributor partner for the UK and DACH markets, moving from a direct to a two-tier distribution model, to boost its growth in Europe.

Read More
IT Services News

Logicalis target digital-first leaders with launch of managed Intelligent Connectivity service

London, United Kingdom – 25th April 2022: Logicalis, a global IT solutions and managed service provider, today announces the launch of Intelligent Connectivity, a solution designed to empower digital-first customers to improve business performance and user experience by operating with connectivity as a managed service. “Connectivity is critical to success in the digital-first economy. Organisations […]

Read More
IT Services News

USU receives highest rating in Gartner® “Voice of the Customer” report

USU recognized as Customers’ Choice by IT Service Management customers in EMEA Möglingen, April 11, 2022 – USU is the only German manufacturer to be included in the new 2022 Gartner® Peer Insights™ ‘Voice of the Customer’: IT Service Management Tools report. Compared with 15 of the world’s leading IT service management (ITSM) tool vendors, […]

Read More