Get a Pentest and security assessment of your IT network.

News

NSM at the Endpoint

Network Security Monitoring relies on watching network traffic to identify suspicious and malicious activity. A large and definitely growing amount of network time is outside the reach of network-based sensors. I would personally still find network traffic generated by a compromised host to be extremely useful, regardless of how that host connects to any network. One option I pitched to NetWitness yesterday was to deploy a software agent to a suspected compromised system for purposes of collecting and storing network traffic. This approach has the benefit (some would say drawback) of intercepting encrypted traffic as well.”]

Source: https://taosecurity.blogspot.com/2008/02/nsm-at-endpoint.html

Related posts
News

Ashley Madison 2.0 Hackers Leak 20GB Data Dump, Including CEO's Emails

News

Art of Twitter account hacking

News

Take note, next week update Adobe Reader and Acrobat to fix critical flaws

News

Linux bug leaves 1.4 billion Android users vulnerable to hijacking attacks