intelligent network monitoring

It is costly and time consuming to monitor the corporate network. Finding important security events in the stream of network logs and traffic information is hindered by the massive amounts of data generated by legitimate network activities. Due to this restraint, companies are often forced to watch only part of the network, leaving large parts of the network unguarded. InspektOne addresses this issue.

- Detecting abnormal events, in the stream of normal network activities. Security events are automatically evaluated and prioritized. Read more about the value of anomaly detection (Anomaly detection)

- Machine learning algorithms enable the system to adapt to any network, and rely on anomaly detection and holistic analysis – not regular rules. Read more about the limitation of rule-based security systems (vs. Rules)

- Collecting and evaluating logs from systems and devices across the network, providing an optimal foundation for analysis. See list of supported systems (Supported products)

- Providing full access to current and historical data. Search and navigate the entire log history for further forensic analysis.

- Keeping logs records stored safely off-site, yet available for review and forensics. See details about remote storage (Log management)

- Deployed as a hosted solution. Easy setup and no maintenance. (Deployment)

- Optional monitoring services by Inspekt Services. Leave the monitoring to certified security professional and free up internal resources. (Monitoring)

For pricing please fill out this form and you will be contacted as soon as possible.

You can also contact Inspekt Security directly. Details can be found under “Contact Us” (link: Contact Us)

For Trail or Demo please read more... (link: Trial and Demo)

For a free trial of InspektOne, or demonstration of the system please fill in the form below.

InspektOne is available as a flexible hosted solution, enabling easy deployment and no maintenance.

For each customer, a separate virtual server with InspektOne is started at our data center. You then forward your logs over the internet (see below for secure transmission options) to the dedicated server instance and can access the the results via your web browser.

A) “Just get me going”
Forward logs directly from your devices to InspektOne:
1. Sign-up
2. Send logs
3. See results

B) “Let's do this securely”
Forward your logs via secure tunnel
1. Sign-up
2. Download and install log collector and secure tunnel software
3. Send logs to the collector which then forwards to InspektOne
4. See results

C) “I already have centralized log collection”
Forward logs from log collector
1. Sign-up
2. Forward logs from log collector to InspektOne
(Optionally use secure tunnel for transmission)
3. See results

D) “I want a box that does this for me”
Connect via Inspekt Gateway appliance
1. Sign-up
2. Receive and plug-in the Inspekt Gateway appliance
3. Send logs to Gateway which then forwards to InspektOne
4. See results

InspektOne analyzes the continuing stream of log messages from the corporate etwork, and is able to identify abnormal patterns using unique machine learning technology. With the system recognizing and prioritizing such unusual activities, customers can ignore all the irrelevant logs that represent normal activities, and focus on the few that could represent legitimate problems.

Rule-based monitoring is based on prior knowledge of a given threat, which means that rule-based monitoring only catches the things we know already. As a result, discovering new security threats is impossible for the simple reason that the threats haven not been included in the monitoring parameters. It is then of race – the time from a new vulnerability becomes known until software is patched or rules are updated is becoming less and less. A few years ago, you might have had a few weeks in which to safeguard your systems, but that situation is a thing of the past. In many cases, you simply don’t have time to react before your security system’s flaw has already been exploited. Therefore rule-based systems are starting to fail. They cannot keep up with the rising levels of network complexity and modern security threats. To counter these limitations of rule-based monitoring, InspektOne is based on holistic algorithms that detect unusual events.

InspektOne offers full search capabilities into all log records (current and historical). This is made possible by an advanced distributed storage model, which provides impressive performance searching massive amounts of logs is seconds, instead of minutes or hours.

The InspektOne network monitoring is primarily based on Syslog, and can include any device or system capable of using this standard.

These include Linux servers, firewalls, wifi access points, Windows Servers (via utility) and many more.

Regulations, including SOX, HIPAA require organizations to implement comprehensive security measures, often including collecting and analyzing logs from many different sources – and syslog format has proven to be an effective way to consolidate logs with.

Leave the network monitoring to Inspekt Services and free up internal resources (option). Experienced security engineers will monitor the InspektOne and provide periodic reporting and alerts about security concerns on your network. Inspekt Services is the professional services arm of Inspekt Security. (link: services)