It has been all over the news this weekend, a surge in Ransomware under the name 'wannacry' that has the potential to cripple large portions of networks due to the way that it spreads. This is a pretty stealthy piece of malware at the network level, little to no CnC has been confirmed, but at an individual level it doesn't behave much differently from any other Ransomware that we have seen in ...
Read MoreWe added a feature to alert you whenever a new MAC address is seen by the system. The system learns about MAC addresses either through analyzing the DHCP protocol or finding new MAC addresses in the normal network traffic (if you are mirroring/spanning the endpoints' MAC addresses). It generates messages of the form: MACwatch Every time the system sees a new MAC address. Where: IP_ADD...
Read MoreWe recently added the MAC addresses to the event messages. The system gets the MAC addresses in two orthogonal ways: We sniff the MAC headers from the passive tap. If the MSS sees more than 5 IP addresses with the same MAC, it stops recording because it means you are mirroring the connection between the switch and the next routing hop (probably the firewall) where the MAC addresses are not avai...
Read More
Technology Editor SC Magazine
MetaFlows Security System “This is not just any IPS. Because it is a hybrid application – local and cloud-based – users get a lot of benefit from the cloud piece that are not available from a standard IPS. For example, a typical IPS gets its updates at whatever update interval the vendor determines. The updates usually are based on the efforts of the vendor’s threat assessment laboratory. Not so for MSS.
Cubic Corporation
I would recommend using Metaflows to anyone. The Metaflows team has come up with an amazing product and they keep adding killer features to make any analysts job easier.
Cal State San Bernardino
MetaFlows is more effective as compared to our existing intrusion detection infrastructure because it lets us more quickly identify and correlate relevant alerts.
Technology Editor SC Magazine
We were pleased that this Innovator continues to blaze the trail ahead for perimeter defense in an environment increasingly consisting of less and less perimeter to defend. The problem is a tough one and MetaFlows has brought creativity and insight to the solution. This is one of the most positive uses of the cloud for security purposes that we have seen in quite a while.
President & Chief Scientist CIO Review
MetaFlows detects the behavior of the internal hosts in a way that will alert enterprises of any unusual activity in their network. MetaFlows’ solution can be easily introduced in an enterprise network to detect malicious activity because it runs on economical, off-the-shelf hardware with a cloud-based administration. It can also run on virtual instances in the cloud to collect and inspect network traffic without requiring access to the physical networking layer.
Senior Information Risk ConsultantTufts University
MetaFlows has impressed us as a highly responsive organization with a really great product. Their ability to add requested features quickly is truly amazing.
Security Engineer
I needed an IPS solution that operates as a tap rather than inline, and MetaFlows was the only contender. The interface is clean and easy to navigate, and configuration is straightforward. The sizing options offer coverage from SOHO to datacenter, all at competitive prices.
Enterprise Infrastructure ArchitectFiREapps
I have used Metaflows for several years. It is an integral layer of our security strategy.
AirSpring
This IDS/IPS system has taken our network security to another level. We were just using a standard firewall and endpoint protection for years. Unfortunately that is not enough these days. Metaflows gives us visibility to all network traffic and lets us know as soon as something is going on that needs attention. I would defiantly recommend this product if you are looking for increased security and better visibility of your network.
Recent Comments