Instruments

More details of available instruments.

Rule Importer

Tool for importing, generating and deploying Suricata rules from packaged rule sets and blacklisted addresses.

Datasheet »

PortDiff

Monitors for open services on hosts and reports changes in the network as events.

Datasheet »

Downloader

Downloader is helper Instrument providing other Instruments the ability to download resources outside the Sensor.

Datasheet »

Suricata IDS

Suricata IDS is a network threat detection engine. The integration to SensorFleet solution allows easily deployable and manageable intrusion detection.

Datasheet »

SensorFleet IDS Rule Manager

Advanced features to be used on top of IDS engines, such as automatic ruleset updating, event stream viewer, etc.

Datasheet »

PassiveDNS

PassiveDNS can be used to store information from DNS requests and uses that stored information to augment other events.

Datasheet »

Capture Engine

Capture Engine redistributes packets from physical interface to mirror-bridge interface(s).

Datasheet »

TrafficGuard Probe

Traffic Guard Probe is the lower level network probe that delivers identities to TrafficGuard Manager.

Datasheet »

Traffic Recorder

Captures network traffic to disk and provides indexing and searching capabilities through Moloch software.

Datasheet »

TrafficGuard Management

Traffic Guard Manager gathers the identities reported by TrafficGuard Probe and creates events based on identity changes.

Datasheet »

Netflow Instrument

Netflow passively listens for network traffic and stores the traffic flows in Cisco NetFlow format.

Datasheet »