When we hear about a cyberattack these days, there’s often a reference to when the network was originally compromised. In recent years, the need to determine how long that compromise was on the network, who else was involved, and how you’re going to gain this visibility has moved to the forefront of the SecOps team’s needs.
Read moreBlog
Configuring a network map
Posted on - by Ryan Slosser
The process of setting up a new network map has changed a bit in the newest Plixer Scrutinizer v19.1.0 release. Today, I’d like to go over setting up a new network map and configuring new connections between map objects.
Read moreHow to find BYOD game systems on your network
Posted on - by Joanna Buckley
Since the beginning of lockdown, the sale of video games and their systems skyrocketed. Now that we’re slowly moving back to office life, employees may be bringing their BYOD game systems such as PlayStation Vitas, Nintendo Switches, and Nintendo 3DSs to work with them. Here’s how we can help you find those pesky systems.
Read moreMalware detection using machine learning and NetFlow
Posted on - by Scott
Last year Plixer released version 19 of Scrutinizer, and with it came the introduction of Plixer Security Intelligence, our machine learning appliance.
The ML appliance learns and establishes what is normal in network traffic behaviors across hundreds of data models. When Scott’s PC reaches out to an application that he has never touched, or exhibits out-of-the-ordinary traffic behaviors, that activity is flagged and alarmed on.
Read morePlixer recognized as Most Innovative NDR vendor by Cyber Defense Magazine
Posted on - by Theresa Abbamondi
Plixer has been recognized by Cyber Defense Magazine’s 2021 InfoSec Award as the Most Innovative in Network Detection & Response. This award acknowledges Plixer’s continued evolution of our industry-leading NDR platform.
Read moreCisco ISR4300 IPFIX configuration
Posted on - by Khalil Ismayilov
I recently helped a customer configure NetFlow on their ISR4300. I found that ISR43XX/44XX routers run IOS-XE, which only supports Flexible NetFlow (FNF). NetFlow is a Cisco technology that provides statistics on packets flowing through the router. It’s the standard for acquiring IP operational data from IP networks.
Read moreFinding threats with host index
Posted on - by Dylan Mclaughlin
Imagine someone walks up to your desk and asks a very simple question: has this IP address been seen on our network? This could be a potentially difficult question to find an answer to, especially with any confidence. Plixer Scrutinizer allows you to provide a definitive answer to whomever is asking.
Read moreNetwork Detection and Response (NDR): What does it mean?
Posted on - by Stephen Tutterow
What is NDR?
This blog will focus on the hottest 3-letter acronym of 2020 & 2021—NDR. Network Detection and Response solutions must address an expanding list of non-malware threats that revolve around data exfiltration, lateral movement, and targeted user attacks. Teams must deploy solutions that learn and adapt to new patterns in real time to ensure they stay vigilant in this changing threat landscape. Plixer Scrutinizer allows network and security operations teams to address both sides of a problem within a single interface.
Read moreNetwork traffic demands of the post-pandemic era and how to manage them
Posted on - by James Dougherty
Gartner just posted their worldwide spending forecast report for the first quarter of 2021 and it looks positive. Clearly, the experts will continue to argue about the economic pressure that has been choking parts of the global economy and whether it’s losing its strength, but from Gartner’s perspective, it looks like we’ll see growth in all IT spending.
Read moreNetFlow configuration: back to basics
Posted on - by Ryan Slosser
As a conversation is observed by a NetFlow-capable device, metadata about that conversation such as source and destination addresses, source and destination port numbers, and packet sizes are stored in a cache on the device until a timeout is reached, then exported to a NetFlow collector to be used for reporting later. I’d like to talk about the information collected and how long the device will hold that information in the cache.
Read more