Endace has announced the release of EndaceFabricT, a centrally-managed, network-wide packet capture and recording fabric. EndaceFabric gives network security and network operations teams (NetOps and SecOps) the definitive, packet-level evidence they need to rapidly investigate, and respond with certainty to, cybersecurity threats and network or application performance issues.
EndaceFabric seamlessly connects multiple EndaceProbe Network Recorders into a recording fabric that can be centrally managed using EndaceCMS Central Management Server.
It includes powerful investigation tools that enable analysts to quickly find and retrieve the network history they need for investigations:
“Managing accurate recording of petabytes of network history and making it searchable across the network is a big technical challenge. It becomes even more difficult as network speeds increase and networks become more distributed,” says Cary Wright, VP Product Management at Endace. “With the release of OSm 6.3, the operating system that powers all Endace systems, EndaceFabric addresses that challenge by providing a distributed, centrally-managed recording infrastructure that can be deployed across the entire network at scale.”
EndaceFabric’s one-click search lets analysts quickly locate, retrieve and analyze packets of interest from petabytes of recorded network history distributed across the EndaceProbes in the fabric. This streamlines investigation workflows, and eases the burden on NOC and SOC teams which are under pressure to investigate and resolve the exponentially increasing number of critical alerts they receive each day.
API integration provides tight integration of EndaceFabric’s Network History with security and performance monitoring tools from Endace partners such as Cisco, Dynatrace, Splunk and Plixer. Analysts can click on alerts in these tools and jump straight to the related packet-level history to see exactly what’s happened.