Featured Posts

Various network nodes with security locks, representing encrypted traffic visibility
Network Security

How To Investigate Encrypted Traffic Without Decrypting It 

Most malicious traffic is encrypted, and in real environments, you usually don’t have the keys to inspect it. You can still investigate encrypted traffic effectively by ...

Read More
Representation of lateral movement: attack spreads through a network from a central point
Network Security

How To Detect Lateral Movement: A Step-by-Step Guide 

Blocks of data in a digital environment. Most of the blocks are clear but one is red, representing AI-powered anomaly detection
NDR

How Network Anomaly Detection Works (And Why It Matters)

All Posts

critical thinking
Network Operations

Asking the Hard Questions: Why Analyze Network Traffic?

There are times when we adults would be better off thinking like toddlers. More specifically, I want us all

Read More
Network Operations

Cisco ASA NetFlow Problems

Although the Cisco ASA NetFlow exports have had some problems in the past, Cisco was the first vendor to

Read More
Network Operations

Network Forensics and Incident Response Using NetFlow and IPFIX

Network forensics can be an intimidating subject. When IT personnel hear the word “forensics” they often recoil with visions

Read More