Upwards of 12,000 people packed Messe Berlin for the Cisco Live Europe 2017 event last week. It was a busy, exciting and noisy atmosphere and a lot of fun to attend. As a Cisco Solutions Partner, Endace was pleased to be invited to be one of the vendors exhibiting in the Cisco Security Partner Village.
Cybersecurity was a hot topic at Cisco Live, and the Security Partner Village was bustling, with lots of attendees interested in seeing the latest cybersecurity solutions.
Endace’s Sandrine Kubach and Rob Earley were inundated with people interested to find out how we integrate our full packet capture solutions with Cisco’s security solutions.
Sandrine and Rob demonstrated the integration between our EndaceProbe Network Recorders and Cisco’s Firepower NG-IPS.
Endace’s Fusion Connector for Firepower allows security analysts to click from an alert in the Firepower Management Console to instantly view and analyze related network packets recorded on EndaceProbes. This streamlined workflow dramatically reduces investigation times and provides definitive evidence of exactly what has happened so analysts can respond appropriately.
It was great to have another of our partners, Plixer, demonstrating the integration between Scrutinizer and EndaceProbes at a stand just metres away from our own too!
Cisco Live Europe was a fantastic event. To all those who stopped by our stand, thank-you for making the time. It was great to meet you and we look forward to talking to you again soon.
Thanks to the Cisco team for their wonderful organization and support. We’re excited about being at Cisco Live US in Las Vegas later in the year!
If you weren’t able to make it to Berlin, check out the great highlights reel that Cisco has put together – it gives a great sense what a busy event it was:
Having been one of the original sponsors of the OISF, we were thrilled to be involved again as a community partner sponsor at Suricon 2016. The conference ran Nov 9-10 and with an international contingent of attendees and sponsors, Washington DC on election night was a very unique way to kick off the conference!
It was great to reacquaint with old friends at the OSIF. Kelley Misata and the Core team did a fantastic job of organizing the conference. There were some really interesting presentations from Core team presenters and the Suricata community. Check out the conference highlights here for links to some of the presentation slides.
We had a lot of interest from attendees interested in using Endace DAG cards to improve the performance and fidelity of Suricata. For anyone wanting to find out how to use Suricata with DAG, we put together a technical brief which you can download here.
To celebrate Endace’s return as a sponsor, we offered attendees a special 2-for-1 deal on our DAG 10X2-S cards. We think this card really hits the price/performance mark, providing a professional capture card at a very attractive price. And judging by level of the interest we saw at the conference, attendees agreed (a reminder to conference attendees, the offer closes Dec 15th, so don’t forget to return your claim form!)
Suricon 2016 was completely sold out and it’s great to see the attendance and interest growing so strongly. Endace is looking forward to sponsoring Suricon 2017 in Prague which promises to be even bigger and better again!
Europe got its own Sharkfest in October and the inaugural Wireshark Developer and User Conference was a great success with strong attendance from the user and developer community across Europe. Congratulations to Sharkfest Europe for a great launch to what is sure to be a fantastic annual event.
There was a great program of speakers over the three days. Kicking things off with the pre-conference course was Wireshark University’s Laura Chappell. Her Troubleshooting with Wireshark tutorial was well attended and included invaluable tips for working with Wireshark using workflows which make optimal use of Wireshark to quickly highlight potential issues.
Continue reading “Inaugural Sharkfest Europe a great success”
Last month we announced a partnership with Plixer to provide integration between EndaceProbe™️ Network Recorders and Plixer’s Scrutinizer™️ NetFlow Analytics suite. This leverages Endace Fusion’s API to enable SOC and NOC teams to pivot directly from Scrutinizer alerts to packet-level detail in traffic recorded on EndaceProbes across the network, delivering the detailed data that enables analysts to quickly investigate and establish the root cause of an alert.
We have also joined the Cisco Solution Partner program. This partnership provides customers using Cisco’s Firepower™ Management Console with single-click access to EndaceVision for powerful visualization of network traffic and rapid drill down to recorded network packets using Endace Fusion’s Pivot to Vision and Pivot to Packets API functions.
Are you a Cisco Firepower or Plixer Scrutinizer user?
Contact email@example.com to organize a demo so you can see how this integration can dramatically speed up your investigations.
It seems everyone is in Las Vegas for Black Hat this week. We’re excited. Yes, we’re here too and we’d love to see you.
So drop in and see us at Booth #1572 where you’ll be able to check out our new EndaceProbe 114 Branch Office Network Recorder, see demos of our Cisco® FireSIGHT™ Management Center and Splunk™ integrations and we’ll also be showing off the new features of EndaceVision 2.0.
Plus we have some handsome battery packs and notebooks to give away. So swing by and say Hi.
With up to 192TB of storage per appliance, the new EndaceProbe™ 9000-XS series network recorders provide a highly scalable network recording solution, offering Petabytes of clustered and/or distributed storage capable of storing weeks, or months, of network history.
The massive storage of the 9000-XS EndaceProbes makes them an ideal choice as always-on recorders capturing a detailed history of network activity for forensic analysis of data breaches and speeding up the investigation and resolution of network security or performance issues.
See our press release about the new XS series and check out the complete range of EndaceProbe 100% accurate, high-speed network recorders.
Or download the EndaceProbe 9000 series datasheet.
I don’t know about you, but the winter holiday season is a bittersweet pill for me to swallow due in part to two occurrences which are aptly named “Black Friday” and “Cyber Monday.” The connotations themselves conjure up images of sinister malevolence. Black Friday might as well be called “The Black Plague” and Cyber Monday could very well be the title for the next Terminator movie, “Cyber Monday – Rise of the Machines.” The two lexicons of retail mind-control methods are emblazoned in the pre-frontal cortex of every consumer out there…unless by chance, you have been one of the lucky few individuals who is stuck in the 1950’s and opts to buy their holiday presents from the Sears Roebuck Holiday catalog, I envy you.
Continue reading “Who needs Mixed Martial Arts (MMA) when you have Cyber Mondays?”
Network monitoring best practice includes watching the latest trends not only in your own network, but also in other networks across the Internet. Fortunately, there are some great companies out there tracking what’s happening and issuing periodic reports to keep the rest of us up to speed.
I was very interested to read the recent report from Arbor Networks with the Q2 DDoS (distributed denial of service) attack data collated through their ATLAS Internet monitoring system. The report highlights a 43% increase in attacks from the same period in 2012.
Continue reading “DDoS Attacks on Port 0 – Does it mean what you think it does?”
Imagine if Harry Potter’s life had been altered in an Aeon Flux, dystopian kind of way? Instead of inheriting wizard-like-skills and a matching lightning bolt scar on his forehead, he was conversely born with an astute affinity towards programming code, breaching internet firewalls and perhaps secretly working for the CIA?
If this were the case, Harry would clearly need to go to an academic institution worthy of his Information Security (InfoSec) inclined disposition, right? Believe it or not, such an institution actually exists – called “Black Hat,” and it is held yearly in Las Vegas. Black Hat is a symposium that brings together the best minds in security to define tomorrow’s information security landscape with the ultimate goal of providing the essential knowledge and skills needed to defend the government and enterprises against today’s threats. Before we delve deeper, let’s first define what InfoSec is why it’s an extremely important topic to address in the technology sector.
Continue reading “Black Hat 2013 – It’s Hogwarts for Information Security Wizards (Or CIA Spooks)”