It was a privilege to attend this year’s RSA cybersecurity event in San Francisco, and one of our top highlights was certainly the opportunity to speak to Cisco’s ThreatWise TV host Jason Wright. Watch the video on Cisco’s ThreatWise TV (or below) as Jason interviews our very own Michael Morris to learn more about how Cisco and Endace integrate to accelerate and improve cyber incident investigations.
In this short 4 minute video, Michael demonstrates how Cisco Firepower and Stealthwatch can be used together to investigate intrusion events, using Cisco dashboards and EndaceVision to drill down into events by priority and classification to show where threats come from, who has been affected and whether any lateral movement occurred, as well as conversation history and traffic profiles. Michael also explains how Cisco and Endace work together to ‘find a needle in a haystack’ across petabytes of network traffic.
A big thanks to Cisco and to Jason for giving us this spotlight opportunity. If you have any questions about how Cisco and Endace integrations can accelerate and improve cyber incident investigation, visit our Cisco partner page.
From the 5-7th June 2018, the Endace team will be exhibiting at Infosecurity Europe at Olympia, London. Infosecurity, Europe’s largest conference programme, offers more than 400 exhibitors (and 19,500 information security professionals) the chance to showcase market-leading information security solutions.
“The UK team will be demonstrating Endace’s range of products and how they can be integrated with security tools from partners like Cisco, Splunk, Plixer and Palo Alto Networks,” says James Barrett, Senior Director EMEA. “We’re looking forward to hearing some great keynotes, as well as participating in the tech and strategy talks, while sharing our expertise with attendees and other exhibitors.”
Infosecurity brings more than 240 free conference sessions, with attendees ranging from industry veterans to promising start-ups. Alongside the conference sessions and exhibition hall, the event provides networking opportunities for attendees to share knowledge and experience.
You can read more about Endace and our products on the Endace website or on Infosecurity’s exhibitor page. To meet the Endace team and receive a demo at Infosecurity, visit stand R100 or contact us here.
Back in 2015 Emma Garner was looking for a fresh challenge to push her both physically and mentally. Taking inspiration from 90s comedy Cool Runnings she decided to try out for the Royal Air Force Bobsleigh Team. The RAF compete in two-person bobsleighs crewed by a driver and brakeman. Invited to attend novice training as a brakeman at Igls in Austria, she soon found herself careening down the course on her first ever week on ice.
“I remember the anticipation the first time I was nudged off the start and the exhilaration at making it down the track first time without my novice driver crashing. Some people weren’t so lucky.”
Continue reading “Cool Runnings with Endace”
Having been one of the original sponsors of the OISF, we were thrilled to be involved again as a community partner sponsor at Suricon 2016. The conference ran Nov 9-10 and with an international contingent of attendees and sponsors, Washington DC on election night was a very unique way to kick off the conference!
It was great to reacquaint with old friends at the OSIF. Kelley Misata and the Core team did a fantastic job of organizing the conference. There were some really interesting presentations from Core team presenters and the Suricata community. Check out the conference highlights here for links to some of the presentation slides.
We had a lot of interest from attendees interested in using Endace DAG cards to improve the performance and fidelity of Suricata. For anyone wanting to find out how to use Suricata with DAG, we put together a technical brief which you can download here.
To celebrate Endace’s return as a sponsor, we offered attendees a special 2-for-1 deal on our DAG 10X2-S cards. We think this card really hits the price/performance mark, providing a professional capture card at a very attractive price. And judging by level of the interest we saw at the conference, attendees agreed (a reminder to conference attendees, the offer closes Dec 15th, so don’t forget to return your claim form!)
Suricon 2016 was completely sold out and it’s great to see the attendance and interest growing so strongly. Endace is looking forward to sponsoring Suricon 2017 in Prague which promises to be even bigger and better again!
Europe got its own Sharkfest in October and the inaugural Wireshark Developer and User Conference was a great success with strong attendance from the user and developer community across Europe. Congratulations to Sharkfest Europe for a great launch to what is sure to be a fantastic annual event.
There was a great program of speakers over the three days. Kicking things off with the pre-conference course was Wireshark University’s Laura Chappell. Her Troubleshooting with Wireshark tutorial was well attended and included invaluable tips for working with Wireshark using workflows which make optimal use of Wireshark to quickly highlight potential issues.
Continue reading “Inaugural Sharkfest Europe a great success”
Launching at Black Hat this week, the EndaceProbe 114 is purpose-built for deployment in remote locations or branch offices. It offers the same 100% accurate recording, centralized management data mining and retrieval and application hosting as the rest of the EndaceProbe family but comes in a compact, short-depth format that makes it ideal for deployment in branch offices.
The EndaceProbe 114 allows organizations to cost-effectively extend their network visibility right out to the network edge and eradicate the blind spots that can make branch office locations an attractive target for attackers.
Last month we announced a partnership with Plixer to provide integration between EndaceProbe™️ Network Recorders and Plixer’s Scrutinizer™️ NetFlow Analytics suite. This leverages Endace Fusion’s API to enable SOC and NOC teams to pivot directly from Scrutinizer alerts to packet-level detail in traffic recorded on EndaceProbes across the network, delivering the detailed data that enables analysts to quickly investigate and establish the root cause of an alert.
We have also joined the Cisco Solution Partner program. This partnership provides customers using Cisco’s Firepower™ Management Console with single-click access to EndaceVision for powerful visualization of network traffic and rapid drill down to recorded network packets using Endace Fusion’s Pivot to Vision and Pivot to Packets API functions.
Are you a Cisco Firepower or Plixer Scrutinizer user?
Contact firstname.lastname@example.org to organize a demo so you can see how this integration can dramatically speed up your investigations.
It seems everyone is in Las Vegas for Black Hat this week. We’re excited. Yes, we’re here too and we’d love to see you.
So drop in and see us at Booth #1572 where you’ll be able to check out our new EndaceProbe 114 Branch Office Network Recorder, see demos of our Cisco® FireSIGHT™ Management Center and Splunk™ integrations and we’ll also be showing off the new features of EndaceVision 2.0.
Plus we have some handsome battery packs and notebooks to give away. So swing by and say Hi.
The new DAG 5.5.0 software release is available with some exciting and innovative new features:
Add Provenance smart data to captured packets
“Packets don’t lie – unless you don’t know where they came from.”
One of our customers said that once. And he was right.
So with DAG 5.5.0 we’re introducing a revolutionary new capability. Now you can add “Provenance” smart-data fields to your capture files and streams to provide full, contextual information about where the packets were captured and what the environment was like at the time.
Continue reading “DAG 5.5.0 software update”
Gold standard packet capture at a price the market deserves
Endace DAG cards have long been recognized as the industry gold standard for reliable and highly accurate packet capture and processing.
But we wanted to ensure DAG quality is available to everyone, and we think the time is right for a shakeup in the capture card market.
So we’ve set a new, aggressive low price for the DAG10X2-S to ensure it is the most affordable card in its class, bar none. Now there’s no reason to compromise on quality.
If you are interested in purchasing the DAG10X2-S contact our sales team at email@example.com, or talk to your reseller, to find out about the new pricing.