NextGen Infrastructure

Know Everything. Answer Anything. Move into the Next Generation of Network Security Monitoring.

NetWitness NextGen is the most comprehensive network security monitoring platform ever developed. It is the industry's first enterprise security monitoring platform that records everything on the network, re-using it multiple times to answer some of the most challenging questions facing organizations today: insider threats, data leakage, zero-day and targeted malware, I/T asset misuse, network anomalies, compliance, and network e-discovery.

The Historical Response

Typical security investments to date have focused on creating islands or layers of protection by installing point solutions that detect a specific problem, issue or threat. Your adversaries don’t think about security as a set of “issues” for which there are multiple answers – they think about how to use the network to get to your data. An effective approach requires organizations to stop deploying point solutions that create protection gaps and overlaps, and start thinking about security as a single requirement.

The Correct Solution – NetWitness NextGen™

Similar to real world adversaries, NetWitness NextGen views security problems as interrelated and multidimensional, and takes a “record once, reuse many times” approach to network monitoring by solving disparate business problems using a singular, core enterprise security platform and extensible application framework. With over ten years of development invested in the patented technology, and proven experience with some of the most demanding customers across all market sectors, the NetWitness NextGen platform offers a powerful application framework, a distributed infrastructure, and real-time data fusion of global threat intelligence that scales to meet any requirement.

Let us show you how NetWitness NextGen provides solutions for specific industry problems and for specific challenges.

  • 64-bit Linux-based, highly configurable network appliances
  • Up to 10Gbps throughput performance
  • Applies metadata for efficient indexing, storage and searchability
  • Scalable architecture to create a distributed recording framework
  • File object exporting (.exe, .pdf, .doc, .gif, .jpeg, .wav, .mps and many others)
  • Integrates with expandable DAS storage and SAN solutions, including EMC and NetApp
  • Integrates with NetWitness Live to add list-based content and context, including NetWitness Profilers (indicators, parsers, reports and rules), to recorded network information
  • Available open API/SDK to empower custom application development
  • FlexParse™ enabled for rapid, user defined parsing and modeling
  • Supports RSA SecurID and LDAP authentication
  • Supports SNORT signatures
  • Protocol and application exploitation: HTTP, FTP, TFTP, TELNET, SMTP, POP3, NNTP, DNS, SOCKS, HTTPS, SSL, SSH, Vcard, PGP, SMIME, DHCP, NETBIOS, SMB/CIFS, SNMP, NFS, RIP, MSRPC, Lotus Notes®, TDS(MSSQL), TNS(Oracle®), IRC, Lotus Sametime®, MSN IM, RTP, Gnutella, Yahoo Messenger, AIM, SIP, H.323, Net2Phone®,Yahoo Chat, SCCP (Cisco® Skinny), Bittorrent, GTALK, Hotmail, Yahoo Mail, GMail, TOR, Social Networking, Fast Flux, VLAN tagging and many others.

NetWitness NextGen Infrastructure Overview (PDF) Download

Download NetWitness Investigator Free!

Now Includes NetWitness Live

Download

Upcoming Events