Plixer Unveils Enhanced Version of Scrutinizer to Detect Threat

By CIOReview | Thursday, January 7, 2016
736
1179
245

FREMONT, CA: Plixer, a supplier of scalable NetFlow and IPFIX analysis for incident response, has unveiled its updated version, Scrutinizer version 16. The latest update consists of extensive integration with other vendors such as Cisco, Gigamon, Splunk, VMware, and Ziften.

The Scrutinizer System is the base of the Plixer incident response and behavior analytics architecture. Available as a physical or virtual appliance, or as a Windows download, it performs the collection, threat detection, and reporting of all flow technologies on a single platform. It also offers real-time situational awareness into the applications and their historical behaviors on the network. Enterprise visibility, individual appliance, flow analytics, advanced reporting, and multi tenancy are the other important features that define its importance.

The latest version includes numerous attribute enrichments such as Wildcard mask filters that can be applied in the middle of IP addresses and subnets; multipliers are applied to NetFlow samples and sFlow packet samples to help better reflect traffic rates.

With Splunk, Scrutinizer unifies the collection of millions of lows per second and then delivers summarized details in the Splunk dashboard where the data is also searchable. However, VMware supports hundred percent of all VMware VDS, DFW, ESX, VXLAN and associated flow exports.

The Cisco nvzFlow support has been added to the new IPFIX export updated version of Cisco AnyConnect 4.2. The new agent exports flow details directly from desktops and enables Scrutinizer to report on operating system, process name, process hash (SHA256), fully qualified domain name, GPS location and much more.

While the integration between Gigamon and Scrutinizer allows enhanced security appliances such as Scrutinizer to give deeper insight into the traffic generated by end systems and selected applications. In addition, Ziften also been added in the new version and all reports are consisted as part of the free version of Scrutinizer.