Network Forensic Analysis & Security Appliance:
Internet Traffic Capture Solution for DDoS Attacks and Cyber Threats
The Corero SmartWall Network Forensics Appliance, part of the SmartWall Threat Defense System Family, provides line-rate Internet traffic capture to support network forensics of Distributed Denial of Service (DDoS) attacks and cyber threats.
The SmartWall Forensics Appliance provides visibility into attacks by offering scalable solutions for capturing and indexing 100% of the packets at 10Gbps rates. Service Providers, Hosting Providers, and Managed Security Service Providers (MSSPs) can benefit from this network forensic analysis by offering traffic capture as a service to their clients. Providers can also benefit from this analysis by capturing the necessary data to feed historical analysis of cyber threat activity including identification of attack vectors, fingerprinting attacker identity, breach characterization and intelligence gathering for preparation against emerging threats.
This sophisticated forensic analysis appliance offers unprecedented scalability and performance. Capture rates can be scaled in 10Gbps increments, and capture duration is limited only by the capacity of the network addressable iSCSI storage. The iSCSI storage does not need to be physically adjacent to the SmartWall Network Forensics Appliance or located in a single SAN implementation. The SmartWall Network Forensics Appliance can continuously record traffic and simultaneously retrieve specific historical packet captures for subsequent analysis of network packets, flows and trends over time. It provides the raw data for detailed visibility into detected threats and anomalous usage patterns, enabling robust network forensic analysis for regulatory compliance, corporate security incident response and law enforcement reporting.