Get a Pentest and security assessment of your IT network.

News

NSM at the Endpoint

Network Security Monitoring relies on watching network traffic to identify suspicious and malicious activity. A large and definitely growing amount of network time is outside the reach of network-based sensors. I would personally still find network traffic generated by a compromised host to be extremely useful, regardless of how that host connects to any network. One option I pitched to NetWitness yesterday was to deploy a software agent to a suspected compromised system for purposes of collecting and storing network traffic. This approach has the benefit (some would say drawback) of intercepting encrypted traffic as well.”]

Source: https://taosecurity.blogspot.com/2008/02/nsm-at-endpoint.html

Related posts
News

Ashley Madison 2.0 Hackers Leak 20GB Data Dump, Including CEO's Emails

News

Art of Twitter account hacking

News

Botnet authors use Evernote account as C&C Server

News

Canadian agency breached as hackers exploit CVE-2017-5638 flaw in Apache Struts 2