 |
Forensics Search |
OmniPeek’s next-generation network forensics analysis enables engineers to capture, store, and analyze historical network traffic, in order to conduct investigations for troubleshooting, security attack analysis, human resource and policy compliance, application performance analysis, and business transaction analysis.The network forensics search capability allows you to easily and wisely set your search criteria in order to optimize your network bandwidth and performance and includes a unique data-discovery algorithm, along with utilities for reconstructing Email, IM, and Web traffic.
Download our free White Paper on Network Forensics:Network Forensics 101: Finding the Needle in the Haystack
OmniPeek also allows you to view network traffic in its intended form like PDF, HTML, Email, IM, etc. For instance, the web view displays packet flow reconstruction of web requests and responses, allowing you to perform forensic searches by drilling down to individual pages, files, and images. Web data is arranged by server, client, page, or request, providing you with a primary focus for your investigation of the original web content. The Expert application view displays the duration, packets, and phases of each HTTP request.
OmniPeek Screenshots
Click on thumbnail for larger view
Forensics SearchThe Compass Dashboard Extension for OmniPeek EnterpriseCompass for OmniPeek Enterprise is an interactive dashboard for post-capture forensics on large quantities of wired and wireless network traffic. Compass employs a gorgeous looking interactive graph, allowing you to visualize and interact with utilization statistics from large quantities of network data, before actually loading a specific time range of packets. When you have captured very large quantities of network traffic, it is difficult to know where to start your fornesics analysis. It is like a shot in the dark, or like finding a needle in a haystack. You can either open individual trace files one at a time, or run a time consuming forensics search. Both of these techniques assume you have a clue about what to search for. The problem is that often times, you may not have a clue yet. With Compass for OmniPeek, you can see the utilization, nodes, and protocols for large quantities of network traffic in a visually stunning and interactive graph, without having to load the packets first. In other words, you can see the "when", the "who", and the "what". Compass is available as a free extension for OmniPeek Enterprise with maintenance. Download it from MyPeek here.
HR ComplianceIs an employee stealing data, illicitly transmitting confidential material, or visiting Web sites that violate your organization’s human resources policies? Use WildPackets’ network forensics solution to capture data and collect the evidence needed to resolve the issue. Intermittent IssuesAre your users are complaining about a problem that occurs only intermittently. You monitor your network, but can’t seem to pin down the issue. Security Cyber Attack AnalysisCapture hours or days of network traffic, then use OmniPeek’s built-in network forensics search capabilities and its inline filters to analyze and identify attacks on your network. Transaction AnalysisCapture Gigabytes or even Terabytes of application server traffic, then mine the transaction data using OmniPeek’s built-in network forensics search capabilities. |
| Copyright © 2010 WildPackets, Inc |
| All registered and unregistered trademarks are the sole property of their respective owners |
