caplon network detection & response

Secure your network by detecting unusual behavior and cyber attacks early, before major damage is done

Attackers that get past signature-based protections (next generation firewall and IDS systems) are nearly impossible to detect without proper tools. They remain undetected for weeks and months. During this time, undetected data exfiltration (sensitive data leakage) can cause significant irreversible damage. In other cases, attackers actively reveal themselves with extortion demands after this reconnaissance phase. This leads to incalculable consequential costs and major reputational damage.

However: Attackers always leave traces. caplon© network detection uses innovative algorithms and machine learning methods to provide the security & operations teams with valuable indications for detecting such anomalies at an early stage of the attack, thus avoiding consequential costs.

Transparency: overview of the processes taking place in the network

  • Visualization of all communication relationships to detect unusual and unwanted communication
  • "Time-dependent" monitoring of communication relationships (e.g. remote maintenance accesses at night )
  • Detection of unusual services and shadow IT
  • Analysis of various metrics for different communications
  • Dynamic-adaptive detailed analysis: diving from an overview flow view, to a more detailed - based on network packet level – dive

Detection: Detection of unusual behavior

 

  • Detection of unusual system and user behavior (e.g. unusually high number of requests)
  • Detection of (horizontal and vertical) port scans
  • Detection of command&control channels
  • Check against blacklists
  • Detection of data exfiltration
  • 100% coverage of BSI requirements according to BSI CS 134 for an anomaly detection system

Response: Efficient investigation of security incidents

  • Permanent circumstantial evidence through continuous network recording ("flight recorder for the network")
  • Access to all details of network packets for forensic analysis
  • Integration of information from other systems into the analysis via open interfaces for a comprehensive overall picture
  • Low false positive rate due to explainable AI
  • ONE tool allows cooperation between network- and security-team
  • Usable results from day ONE - easy integration without agents

Your cookie settings

Technically necessary (essential) cookies

Information on the individual cookies

  • Show more

    Technically necessary (essential) cookies

    Necessary cookies help to make a website usable by enabling basic functions such as page navigation and access to secure areas of the website. The website cannot function properly without these cookies.

    Name fe_typo_user
    Supplier consistec.de
    Purpose Secures anti-spam measures when using the contact form
    Expiration Session
    Type HTTP
    Name conCookieSettings
    Supplier consistec.de
    Purpose Saves the consent to cookies
    Expiration 30 days
    Type HTTP
    Name mtm_consent_removed
    Supplier consistec.de
    Purpose Used by Piwik Analytics Platform (matomo) to determine that the tracking has been contradicted
    Expiration 1 month
    Type HTTP
  • Show more

    Statistics

    Statistics cookies help website owners understand how visitors interact with websites by collecting and reporting information anonymously.

    Name matomo.php
    Supplier consistec.de
    Purpose Records statistics about the user's visits to the website, such as the number of visits, average time spent on the website and which pages were read.
    Expiration Session
    Type HTTP
    Name _pk_id#
    Supplier consistec.de
    Purpose Records statistics about user visits to the site, such as the number of visits, average time spent on the site and which pages were read.
    Expiration 1 year
    Type HTTP
    Name _pk_ses#
    Supplier consistec.de
    Purpose Is used by the Piwik Analytics Platform (matomo) to track page requests of the visitor during the session.
    Expiration 1 day
    Type HTTP
    Name _pk_testcookie..undefined
    Supplier consistec.de
    Purpose Is used by Piwik Analytics Platform (matomo) to check whether the browser used supports cookies.
    Expiration Session
    Type HTTP
    Name _pk_testcookie.#
    Supplier consistec.de
    Purpose Is used by Piwik Analytics Platform (matomo) to check whether the browser used supports cookies.
    Expiration Session
    Type HTTP