Here’s the Scene group DVTiSO‘s release McAfee Network Threat Response.
McAfee Network Threat Response is a software package that captures, deconstructs, and analyzes malware that is resident inside your network today. Network Threat Response is a powerful cyber tool for security analysts. It automatically identifies malware targeting internal network vulnerabilities, and instantly captures and analyzes it to aid in rapid remediation and ongoing network defense.
Reveals what attackers don’t want us to see
Network Threat Response combs through PDFs, Microsoft Office files, and all other network activities looking for attempts to hide or obscure malicious content. Network Threat Response is not limited to finding and alerting to the presence of obfuscation; it decodes the traffic, providing analysts with visibility into the attack that is not possible with any tools currently available.
Assembles puzzle pieces together
With the unique ability to uncover slow moving, persistent attacks, Network Threat Response identifies and accumulates portions of attacks that trickle in over time. No other malware product in the marketplace can piece together threat puzzles that sneak into networks at a snail’s pace.
Cuts analysis time down to minutes
Network Threat Response accelerates the complex analysis of captured data via its PCAP import capabilities. As the data is replayed through the advanced analysis engines, hidden traffic is decoded and key indicators are highlighted. As a result, a security or IT analyst has anchor points from which to start a pre-qualified investigation — shaving days off of analysis time.
Maximizes security staff effectiveness
A single Network Threat Response instance gives any security team the power of 20 analysts and reverse engineers without requiring a single hire. Unlike other security devices, which can generate thousands of events a day, analysts can review every event generated by Network Threat Response in minutes versus the hours, days, or weeks needed today.
High-performance, high-security platform
Customers seeking to lower the hardware maintenance and management costs associated with dedicated appliances can now deploy Network Threat Response on the scalable and multi-functional CloudShield CS-4000 platform. The CloudShield CS-4000 platform provides scalability, physical security, and secure communications to host products aimed at mitigating sophisticated threats. Network Threat Response on the CS-4000 platform provides security-conscious enterprises with a scalable, cyber-tough approach to finding and avoiding security breaches caused by advanced malware attacks.