ExtraHop Reveal(x)

The Challenge

Various factors limit the operations and decrease visibility in today´s enterprise and service provider networks. Hybrid and Cloud architecture increase agility, but limit control in return. Encryption is important, disguises the visibility however of good and bad activities. The analytics of data should be maintained when the volume raises and the infrastructure becoming more complex. With ExtraHop, NetDescribe offers a technology that automatically classifies over 50 protocols down to L7 and makes a behavior-based analysis of network traffic using machine learning. Network and security threats are displayed in an informative manner and actions to be taken for security-relevant events are recommended.

ExtraHop Reveal(x) – the solution from NetDescribe

With a 3 in 1 workflow, optimized for identification, correlation and analysis, ExtraHop Reveal(x) focusses on the highest risk and reduces the reaction time in case of a limit-exposition.

Unusual activity, which may relate to a threat can be identified early and corrective actions can be taken before the company is harmed. Instead of the time-consuming manual collection and analysis of data, ExtraHop Reveal(x) provides real-time insights and rapid root cause locating. Global search and indices allow immediate access to relevant security information.

 

Product description and functionalities

ExtraHop Reveal(x) provides an analysis for the total network traffic and identifies in real-time the encrypted traffic, Rogue-nodes, IoT- and BYOD-devices. ExtraHop Reveal(x) manages over 40 protocols , decrypts SSL and PFS-traffic (Perfect Forward Secrecy), recognizes connected devices and automatically classifies them.

  • Auto Discovery function for systems and applications
  • Web User Interface with global search and for ad-hoc requests
  • Real time analysis
  • Anomaly Detection Machine Learning Technologie
  • Support of Public Cloud environments
  • API´s: Palo Alto, ServiceNow, Splunk, Cisco, etc. possible
  • Web User Interface with global search and packet analysis

 

Use Case

Analyst Reports - SANS WHATWORKS: SOC/NOC Integration with ExtraHop Reveal(x) - Improving Time to Detect, Respond, and Contain

  • In this case study, see how Curo Financial uses Reveal(x) to drive collaboration between security and IT Operations teams
  • Learn how their security, network, and application teams use network detection and response
  • Get advice and best practices for other companies considering ExtraHop Reveal(x)

Please download here:

SANS-WhatWorks-Reveal(x)-case-study

Contact us!

Customer Service

NetDescribe GmbH

I am happy to listen to you and connect you with one of our performance experts. Most important: We help you quickly and competently!

Get started with NetDescribe


We are partner of