<!doctype html> <html> <head> <meta charset="utf-8"> <title> Benefits of Network Security Analytics & Anomaly Detection: NetFlow Analyzer </title> <meta name="Description" content="Security Analytics, a simple add-on module of NetFlow Analyzer, gives you a complete view of all the network security threats in your network in a single glance. Try Now!"/> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <meta name="author" content="ManageEngine"> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1"> <!--[if lt IE 9]><script src="https://www.manageengine.com/js/html5shiv.js"></script><![endif]--> <link href="//www.manageengine.com/favicon.ico" rel="shortcut icon"> <script type="text/javascript" src="https://www.manageengine.com/js/ipcallback-new.js"></script> <link rel="stylesheet" type="text/css" href="https://www.manageengine.com/css/me-v1.css?v2"> <link rel="stylesheet" type="text/css" href="/products/netflow/style/prd-style.css"> <link rel="canonical" href="https://www.manageengine.com/products/netflow/advanced-security-analytics-module-benefits.html" /> <style> .refer-res { list-style-type: none; margin: 10px 0 0 0; padding: 0!important } .refer-res li { border-top: 1px solid #ececec; list-style-type: none; margin: 0; padding: 0 } .refer-res li a { color: #777; padding: 7px 0 7px 10px; display: block; text-decoration: none } .refer-res li a:hover { color: #000; text-decoration: none } #lhsBanCon { margin: 20px 0 20px 0; } </style> </head><body> <div class="pop-box">&nbsp;</div><div class="pop-container">&nbsp;</div> <header> <div id="commonHeader"> <div id="header-topsec">&nbsp;</div> <div class="" id="MEmobPanel"> <div id="MEdropPanel">&nbsp;</div> </div> <div id="header-mainsec"> <div class="headerinner"> <div class="clearfix head-container"> <div class="fl prdLogo"> <a class="nfalogosvg" href="https://www.manageengine.com/products/netflow/"><img title="Bandwidth Monitoring & Traffic Analysis - ManageEngine NetFlow Analyzer" alt="Bandwidth Monitoring & Traffic Analysis - ManageEngine NetFlow Analyzer" src="https://www.manageengine.com/images/logo/netflowanalyzer.svg"/></a> </div> <div class="fr"> <nav> <div class="nav-dwn fr"><a href="/products/netflow/download.html" title="Download ManageEngine NetFlow Analyzer">Download <span class="nav-dwn-icon">&nbsp;</span></a></div> <div class="fr pr"> <ul class="nav header-nav productmenu clearfix" itemscope="itemscope" itemtype="https://www.schema.org/SiteNavigationElement"> <li id="over"><a href="/products/netflow/" title="Overview">Overview</a></li> <li id="fea"><a href="/products/netflow/features.html" title="Features">Features</a></li> <li id="demo"><a href="/products/netflow/demo-form.html" title="Demo">Demo</a></li> <li id="quote"><a href="/products/netflow/getquote.html" title="Get Price Quote">Get Price Quote </a></li> <li id="price"><a href="/products/netflow/netflow-analyzer-editions.html" title="Editions">Editions</a></li> <li id="roadMap" style="display: none;"><a href="/products/netflow/roadmap.html" title="Road Map">Road Map</a></li> <li id="res"><a href="/products/netflow/resources.html" title="Support & Resources">Support & Resources</a></li> <li id="cust"><a href="/products/netflow/customers.html" title="Customers">Customers</a></li> </ul> </div> </nav> </div> <div class="menuIcon menu2ResBlk" id="MEmobile"><span class="s-icon icon-s-menu">&nbsp;</span></div> </div> </div> </div> </div> </header> <section> <div class="heading-menu"> <div class="container"> <h2>Benefits of Security Analytics</h2> <div class="breadcrumb"><a href="/products/netflow/">Home</a> &raquo; Benefits of Security Analytics</div> </div> </div> </section> <section> <div class="container inner-cont clearfix" id="scroll"> <div class="lhs-tree" id="itom-nfa-lhs"> <ul id="lhsTree"> <li id="fea-bm"><span>Bandwidth Management</span> <ul> <li id="fea-bm-bmon"><a href="/products/netflow/bandwidth-monitoring.html" title="Network Bandwidth Monitor">Bandwidth Monitoring</a></li> <li id="fea-bmt"><a href="/products/netflow/bandwidth-monitoring-tools.html" title="Bandwidth monitoring tools">Bandwidth Monitoring Tools</a></li> <li id="fea-bm-dep"><a href="/products/netflow/department-wise-bandwidth-monitoring-using-netflow-analyzer.html" title="Department-wise Monitoring">Department-wise Monitoring</a></li> <li id="fea-bm-bnm"><a href="/products/netflow/bandwidth-management.html" title="Network Bandwidth Management">Network Bandwidth Management</a></li> <li id="remote-wnm"><a href="https://www.manageengine.com/products/netflow/wireless-network-controller-monitoring.html" title="Wireless Network Controller Monitoring">Wireless Network Controller Monitoring</a></li> <li id="fea-bm-bc"><a href="/products/netflow/control-bandwidth.html" title="Bandwidth Control">Bandwidth Control</a></li> <li id="fea-bm-hogs"><a href="/products/netflow/5-steps-to-resolve-bandwidth-hogs.html" title="Getting rid of bandwidth hogs">Getting Rid of Bandwidth Hogs</a></li> <li id="fea-bm-opti"><a href="/products/netflow/optimize-performance.html" title="Optimize Performance">Optimize Performance</a></li> <li id="fea-bm-threshold"><a href="/products/netflow/threshold-based-alerts.html" title="Threshold Based Alert">Threshold Based Alert</a></li> <li id="fea-bum"><a href="/products/netflow/bandwidth-usage-monitor.html" title="Bandwidth usage monitor">Bandwidth Usage Monitor</a></li> <li id="fea-mbu"><a href="/products/netflow/how-to-measure-bandwidth-usage.html" title="How to Measure Bandwidth Usage">How to Measure Bandwidth Usage</a></li> <li id="fea-bc"><a href="/products/netflow/bandwidth-consumption.html" title="Bandwidth Consumption">Bandwidth Consumption</a></li> <li id="fea-network-utilization"><a href="/products/netflow/network-utilization-monitoring.html" title="Network Utilization Monitor">Network Utilization Monitor</a></li> <li id="fea-mon-bandwidth"><a href="/products/netflow/how-to-monitor-bandwidth-usage-on-your-network.html" title="Monitor Bandwidth Usage on Network">Monitor Bandwidth Usage on Network</a></li> <li id="fea-ent-bandwidth"><a href="/products/netflow/enterprise-bandwidth-monitoring.html" title="Enterprise Bandwidth Monitoring">Enterprise Bandwidth Monitoring</a></li> <li id="fea-cbc"><a href="/products/netflow/cisco-bandwidth-control.html" title="Cisco Bandwidth Control">Cisco Bandwidth Control</a></li> <li id="fea-balerts"><a href="/products/netflow/bandwidth-alerts.html" title="Bandwidth Alerts">Bandwidth Alerts</a></li> <li id="fea-cbm"><a href="/products/netflow/cisco-bandwidth-monitoring.html" title="Cisco Bandwidth Monitoring">Cisco Bandwidth Monitoring</a></li> <li id="fea-wbm"><a href="/products/netflow/wireless-bandwidth-management.html" title="Wireless Bandwidth Management">Wireless Bandwidth Management</a></li> <li id="simulate"><a href="/products/netflow/simulate-netflow.html" title="Simulate NetFlow">Simulate NetFlow</a></li> <li id="noc"><a href="/products/netflow/noc-monitoring.html" title="NOC Monitoring">NOC Monitoring</a></li> </ul> </li> <li id="traffic"><span>Traffic Analysis</span> <ul> <li id="traffic-nta"><a href="/products/netflow/network-traffic-analysis.html" title="Network Traffic Analysis">Network Traffic Analysis</a></li> <li id="traffic-nfatm"><a href="/products/netflow/network-traffic-management.html" title="Network Traffic Management">Network Traffic Management</a></li> <li id="traffic-bnta"><a href="/products/netflow/best-network-traffic-analyzer.html" title="Best Network Traffic Analyzer">Best Network Traffic Analyzer</a></li> <li id="traffic-rntm"><a href="/products/netflow/real-time-network-traffic-monitor.html" title="Real-time network traffic monitor">Real-time Network Traffic Monitor</a></li> <li id="traffic-ntm"><a href="/products/netflow/network-traffic-monitor.html" title="Network Traffic Monitoring">Network Traffic Monitor</a></li> <li id="traffic-ntc"><a href="/products/netflow/network-traffic-control.html" title="Network Traffic Control">Network Traffic Control</a></li> <li id="traffic-num"><a href="/products/netflow/network-usage-monitor.html" title="Network Usage Monitor">Network Usage Monitor</a></li> <li id="traffic-tms"><a href="/products/netflow/traffic-monitoring-software.html" title="Traffic Monitoring Software">Traffic Monitoring Software</a></li> <li id="traffic-nat"><a href="/products/netflow/network-analysis-tool.html" title="Network Analysis Tools">Network Analysis Tools</a></li> <li id="traffic-router"><a href="/products/netflow/router-traffic-monitoring.html" title="Router traffic monitoring">Router Traffic Monitoring</a></li> <li id="traffic-server"><a href="/products/netflow/server-traffic-monitoring.html" title="Server traffic monitoring">Server Traffic Monitoring</a></li> <li id="traffic-asa"><a href="/products/netflow/cisco-asa-traffic-monitoring.html" title="Cisco ASA Monitoring">Cisco ASA Monitoring</a></li> <li id="traffic-avc"><a href="/products/netflow/cisco-avc-monitoring.html" title="Cisco AVC Monitoring">Cisco AVC Monitoring</a></li> <li id="cisco-router"><a href="/products/netflow/cisco-router-monitoring.html" title="Cisco Router Traffic Monitoring">Cisco Router Traffic Monitoring</a></li> <li id="traffic-cstm"><a href="/products/netflow/cisco-switch-traffic-monitoring.html" title="Cisco Switch Traffic Monitoring">Cisco Switch Traffic Monitoring</a></li> <li id="traffic-atgm"><a href="/products/netflow/network-layout-using-google-maps.html" title="Analyze traffic using Google maps">Analyze Traffic Using Google Maps</a></li> <li id="traffic-rwtm"><a href="/products/netflow/web-traffic-monitor-software.html" title="Web traffic monitor">Web Traffic Monitor</a></li> <li id="traffic-protoanal"><a href="/products/netflow/network-protocol-analyzer.html" title="Protocol Analyzer">Protocol Analyzer</a></li> <li id="traffic-pam"><a href="/products/netflow/protocol-and-application-monitoring.html" title="Protocol & Application Monitoring">Protocol &amp; Application Monitoring</a></li> <li id="traffic-nbar"><a href="/products/netflow/nbar.html" title="Network Based Application Recognition(NBAR)">Network Based Application Recognition(NBAR)</a></li> <li id="traffic-nbarmon"><a href="/products/netflow/nbar-monitor.html" title="NBAR Monitoring">NBAR Monitoring</a></li> <li id="traffic-voip"><a href="/products/netflow/voip-monitor.html" title="VOIP Monitoring">VoIP Monitoring</a></li> <li id="traffic-sstm"><a href="/products/netflow/site-to-site-traffic-monitoring.html" title="Site to Site Traffic Monitoring">Site to Site Traffic Monitoring</a></li> <li id="traffic-itmnbar"><a href="/products/netflow/intelligent-traffic-management-with-nbar.html" title="Intelligent Traffic Management with NBAR">Intelligent Traffic Management with NBAR</a></li> <li id="traffic-wanipsla"><a href="/products/netflow/wan-rtt-monitor.html" title="WAN Monitoring using IPSLA">WAN Monitoring Using IP SLA</a></li> <li id="traffic-bntm"><a href="/products/netflow/bandwidth-utilization.html" title="Bandwidth Utilization">Bandwidth Utilization Report</a></li> <li id="traffic-speed-mon"><a href="/products/netflow/network-speed-monitor.html" title="Network Speed Monitor">Network Speed Monitor</a></li> <li id="traffic-network-traffic"><a href="/products/netflow/linux-network-traffic-monitoring.html" title="Linux Network Traffic Monitor">Linux Network Traffic Monitor</a></li> <li id="traffic-ntmtools"><a href="/products/netflow/network-traffic-monitoring-tools.html" title="Network Traffic Monitoring Tools">Network Traffic Monitoring Tools</a></li> <li id="traffic-wifi"><a href="/products/netflow/wifi-traffic-monitor.html" title="Wi-Fi Monitoring">Wi-Fi Monitoring</a></li> <li id="ent-traffic"><a href="/products/netflow/enterprise-network-traffic-monitoring.html" title="Enterprise Network Traffic Monitoring">Enterprise Network Traffic Monitoring </a></li> <li id="traffic-fntmt"><a href="/products/netflow/free-network-traffic-monitoring-tool.html" title="Free Network Traffic Monitoring Tool">Free Network Traffic Monitoring Tool</a></li> <li id="traffic-ata"><a href="/products/netflow/application-traffic-alerting.html" title="Application Traffic Alerting">Application Traffic Alerting</a></li> <li id="trafficanomaly"><a href="/products/netflow/network-traffic-anomaly-detection.html" title="Network Traffic Anomaly Detection">Network Traffic Anomaly Detection</a></li> <li id="tforecast"><a href="/products/netflow/network-traffic-forecasting.html" title="Network Traffic Forecasting">Network Traffic Forecasting</a></li> </ul> </li> <li id="fea-nvi"><span>QoS Monitoring</span> <ul> <li id="qst-nt"><a href="/products/netflow/troubleshoot-faster.html" title="Network Troubleshooting">Network Troubleshooting</a></li> <li id="qst-snt"><a href="/products/netflow/traffic-shaping.html" title="Traffic shaping">Traffic Shaping</a></li> <li id="qst-qosm"><a href="/products/netflow/qos-monitoring.html" title="QoS Monitoring">QoS Monitoring</a></li> <li id="qst-qs"><a href="/products/netflow/allaboutqos.html" title="Quality of Service">Quality of Service</a></li> <li id="qst-qos"><a href="/products/netflow/app-qos-traffic-shaping.html" title="Application-level QoS Shaping">Application-level QoS Shaping</a></li> <li id="qst-qosmon"><a href="/products/netflow/cbqos.html" title="Class Based Qos Monitoring">Class Based QoS Monitoring</a></li> <li id="qst-validqos"><a href="/products/netflow/validating-qos-policies-with-cbqos.html" title="Validating QoS Policies">Validating QoS Policies</a></li> <li id="qst-qosconfig"><a href="/products/netflow/qos-configuration.html" title="Qos Configuration">QoS Configuration</a></li> </ul> </li> <li id="fea-nfm"><span>Reports</span> <ul> <li id="rep-tr"><a href="/products/netflow/netflow-analyzer-reports.html" title="Troubleshoot Reports">Troubleshoot Reports</a></li> <li id="rep-cb"><a href="/products/netflow/customizable-dashboard.html" title="Customizable Bandwidth">Customizable Bandwidth</a></li> <li id="rep-bur"><a href="/products/netflow/bandwidth-reports.html" title="Bandwidth Utilization Reports">Bandwidth Reports</a></li> <li id="rep-cpr"><a href="/products/netflow/capacity-planning-reports.html" title="Capacity Planning Reports">Capacity Planning Reports</a></li> <li id="rep-uccp"><a href="/products/netflow/cut-cost.html" title="Use case: Capacity Planning">Use Case: Capacity Planning</a></li> <li id="rep-br"><a href="/products/netflow/usage-based-billing.html" title="Billing Reports">Billing Reports</a></li> <li id="rep-sche"><a href="/products/netflow/scheduling-reports-using-netflow-analyzer.html" title="Scheduling Reports">Scheduling Reports</a></li> <li id="rep-search"><a href="/products/netflow/search-reports-gives-better-understanding-of-network-traffic.html" title="Search Reports">Search Reports</a></li> <li id="rep-waas"><a href="/products/netflow/cisco-waas-reports.html" title="Cisco WAAS reports">Cisco WAAS reports</a></li> <li id="rep-medianet"><a href="/products/netflow/medianet-reports.html" title="Medianet Reports">Medianet Reports</a></li> <li id="rep-cs"><a href="/products/netflow/cloud-services-user-ip-mapping.html" title="Cloud Services">Cloud Services</a></li> <li id="rep-nfr"><a href="/products/netflow/netflow-reports.html" title="NetFlow Report">NetFlow Report</a></li> </ul> </li> <li id="fea-dcm"><span>Network Security and Forensics</span> <ul> <li id="nsf-nsr"><a href="/products/netflow/secure-your-network.html" title="Network Security Reporting">Network Security Reporting</a></li> <li id="nsf-nf"><a href="/products/netflow/network-forensics.html" title="Network Forensics">Network Forensics</a></li> <li id="nsf-nad"><a href="/products/netflow/network-anomaly-detection.html" title="Network Anomaly Detection">Network Anomaly Detection</a></li> <li id="nsf-aft"><a href="/products/netflow/troubleshoot-reports-a-need-for-network-monitor.html" title="Advanced Forensics and Troubleshooting">Advanced Forensics and Troubleshooting</a></li> <li id="nsf-csmt"><a href="/products/netflow/asam-continuous-stream-mining-engine.html" title="Continuous Stream Miner Technology">Continuous Stream Miner Technology</a></li> <li id="nsf-asam"><a href="/products/netflow/network-behavior-analysis-using-advanced-security-analytics-module.html" title="Advance Security Analytics Module">Security Module</a></li> <li id="nsf-bcasam"><a href="/products/netflow/advanced-security-analytics-module-benefits.html" title="Benefits and Capabilities of ASAM">Benefits and Capabilities of Security Module</a></li> <li id="nsf-eveasam"><a href="/products/netflow/advanced-security-analytics-module-event-list.html" title="The 'Event List' in ASAM">The 'Event List' in Security Module</a></li> <li id="nsf-spcc"><a href="/products/netflow/problem-class-catalogue.html" title="Security Problem & Class Catalog">Security Problem &amp; Class Catalog</a></li> </ul> </li> <li id="fea-nsm"><span>Flow-based Monitoring</span> <ul> <li id="flow-netflowmon"><a href="/products/netflow/netflow-monitoring.html" title="NetFlow Monitoring Tools"> NetFlow Monitoring Tools </a></li> <li id="flow-ipfix"><a href="/products/netflow/ipfix-monitoring.html" title="IPFIX Monitoring">IPFIX Monitoring</a></li> <li id="flow-jflow"><a href="/products/netflow/j-flow-monitoring.html" title="Jflow Monitoring">JFlow Monitoring</a></li> <li id="flow-sflow"><a href="/products/netflow/sflow-analyzer.html" title="sflow Analyzer">sFlow Analyzer</a></li> <li id="sflow-nc"><a href="/products/netflow/netflow-collector.html" title="Netflow Collector">Netflow Collector</a></li> <li id="sflow-cisco"><a href="/products/netflow/cisco-netflow.html" title="Cisco NetFlow">Cisco NetFlow</a></li> <li id="sflow-whatisnetflow"><a href="/products/netflow/what-is-netflow.html" title="What is NetFlow?">What is NetFlow?</a></li> </ul> </li> <li id="fea-nfg"><span>Network Packet Sensor</span> <ul> <li id="nps"><a href="https://www.manageengine.com/products/netflow/network-packet-sensor.html" title="Network Packet Sensor">Network Packet Sensor</a></li> <li id="dpi"><a href="/products/netflow/deep-packet-inspection.html" title="Deep Packet Inspection">Deep Packet Inspection</a></li> <li id="nfg-nfg"><a href="/products/netflow/netflow-generator.html" title="NetFlow Generator">NetFlow Generator</a></li> <li id="nst"><a href="/products/netflow/netspeed-tracker.html?lhs" title="NetSpeed Tracker">NetSpeed Tracker</a></li> </ul> </li> <li id="remote"><span>Remote Monitoring</span> <ul> <li id="remote-dm"><a href="https://www.manageengine.com/products/netflow/distributed-monitoring-with-enterprise-edition.html" title="Distributed Monitoring">Distributed Monitoring</a></li> </ul> </li> <li id="integ"><span>Integrations and Add-ons</span> <ul> <li id="remote-app"><a href="https://www.manageengine.com/products/netflow/applications-manager-integration.html" title="Applications Monitoring">Applications Monitoring</a></li> <li id="ipam"><a href="https://www.manageengine.com/products/netflow/ipam-spm-addon.html" title="IPAM and SPM">NetFlow Analyzer-OpUtils Integration</a></li> <li id="remote-ipa"><a href="https://www.manageengine.com/products/netflow/ip-address-management-plugin.html" title="IP Address and Switch Port Management">IP Address Management</a></li> <li id="remote-ipsla"><a href="https://www.manageengine.com/products/netflow/ipsla-monitor.html" title="IP SLA Monitor">IP SLA Monitor</a></li> <li id="remote-ncm"><a href="https://www.manageengine.com/products/netflow/network-configuration-manager.html" title="Network Configuration Management">Network Configuration Management</a></li> <li id="integ-high"><a href="https://www.manageengine.com/products/netflow/highperf.html" title="HighPerf">HighPerf</a></li> <li id="tpintegrations"><a href="https://www.manageengine.com/products/netflow/integrations.html" title="Integrations">Third-Party Integrations</a></li> <li id="remote-slack"><a href="https://www.manageengine.com/products/netflow/slack-integration.html" title="Slack">Slack</a></li> <li id="ctm"><a href="https://www.manageengine.com/products/netflow/aws-vpc-cloud-traffic-monitoring.html" title="Cloud Traffic Monitoring - AWS VPC">Cloud Traffic Monitoring - AWS VPC</a></li> <li id="remote-webhook"><a href="https://www.manageengine.com/products/netflow/webhook-integration.html" title="Webhook Integration">Webhook</a></li> </ul> </li> <li id="mob"><span>Mobile Applications</span> <ul> <li id="mob-apps"><a href="/products/netflow/mobile-apps.html" title="Mobile Apps">Mobile Apps</a></li> </ul> </li> <li id="bmp"><span>Bandwidth Monitoring Basics</span> <ul> <li id="basics"><a href="/products/netflow/basics-of-network-traffic-monitoring.html" title="Network Traffic Monitoring Basics">Network Traffic Monitoring Basics</a></li> <li id="bmp-network-congestion"><a href="/products/netflow/network-congestion.html" title="Network congestion">Network Congestion</a></li> <li id="bmp-sniffer"><a href="/products/netflow/network-sniffer.html" title="Network Sniffer Tool">Network Sniffer Tool</a></li> <li id="bmp-nbm"><a href="/products/netflow/network-bandwidth-monitoring.html" title="Network Bandwidth Monitoring">Network Bandwidth Monitoring</a></li> <li id="bmp-real-time-ndr"><a href="/products/netflow/real-time-threat-detection-with-ndr.html" title="Real-time threat detection with NDR">Real-time threat detection with NDR</a></li> <li id="bmp-best-practices"><a href="/products/netflow/network-bandwidth-monitoring-best-practices.html" title="Network Bandwidth Monitoring Best Practices">Network Bandwidth Monitoring Best Practices</a></li> <li id="bmp-challenge"><a href="/products/netflow/network-bandwidth-monitoring-challenges.html" title="Network Bandwidth Monitoring Challenges">Network Bandwidth Monitoring Challenges</a></li> <li id="wtm"><a href="/products/netflow/wireless-traffic-monitor.html" title="Wireless Traffic Monitor">Wireless Traffic Monitor</a></li> <li id="bmp-trafficm"><a href="/products/netflow/traffic-monitoring.html" title="Traffic Monitoring">Traffic Monitoring</a></li> <li id="bmp-ndr"><a href="/products/netflow/network-detection-and-response.html" title="Network Detection and Response">Network Detection and Response</a></li> <li id="bmp-htmnt"><a href="/products/netflow/how-to-monitor-network-traffic.html" title="How to Monitor Network Traffic">How to Monitor Network Traffic</a></li> <li id="bmp-whatsprotoanal"><a href="/products/netflow/what-is-a-protocol-analyzer.html" title="Protocol Analysis">Protocol Analyzer</a></li> <li id="bmp-packet-sniffer"><a href="/products/netflow/network-packet-sniffer.html" title="Network Packet Sniffer">Network Packet Sniffer</a></li> <li id="bmp-throughput"><a href="/products/netflow/network-throughput.html" title="Network Throughput">Network Throughput</a></li> <li id="bmp-nf"><a href="/products/netflow/what-is-network-forensics.html" title="What is Network Forensics?">What is Network Forensics?</a></li> <li id="bmp-ntat"><a href="/products/netflow/network-traffic-analyzer-tool.html" title="Network Traffic Analyzer Tool">Network Traffic Analyzer Tool</a></li> <li id="bmp-whatisdpi"><a href="/products/netflow/what-is-deep-packet-inspection.html" title="What is Deep Packet Inspection?">What is Deep Packet Inspection?</a></li> <li id="bmp-cbu"><a href="/products/netflow/calculate-bandwidth-usage.html" title="Calculate Bandwidth Usage">Calculate Bandwidth Usage</a></li> <li id="bmp-dos"><a href="/products/netflow/what-is-denial-of-service.html" title="What is denial-of-service?">What is Denial-of-Service?</a></li> <li id="bmp-system"><a href="/products/netflow/network-traffic-management-system.html" title="Network Traffic Management System">Network Traffic Management System</a></li> <li id="throughputvsbandwidth"><a href="/products/netflow/network-throughput-vs-bandwidth.html" title="Bandwidth VS Throughput">Bandwidth VS Throughput</a></li> <li id="bmp-traffic-steering"><a href="/products/netflow/network-traffic-steering.html" title="Network traffic steering">Network Traffic Steering</a></li> <li id="bmp-traffic-engineering"><a href="/products/netflow/network-traffic-engineering.html" title="Network traffic engineering">Network Traffic Engineering</a></li> <li id="bmp-bandwidth-throttling"><a href="/products/netflow/bandwidth-throttling.html" title="Bandwidth throttling">Bandwidth Throttling</a></li> <li id="ip-sniffer"><a href="/products/netflow/ip-sniffer.html" title="IP Sniffer">IP Sniffer</a></li> </ul> </li> <li id="more"><span>More on NetFlow Analyzer</span> <ul> <li id="more-overview"><a href="/products/netflow/netflow-analyzer-overview.html" title="NetFlow Analyzer Overview">NetFlow Analyzer Overview</a></li> <li id="more-benefits"><a href="/products/netflow/netflow-analyzer-product-brief.html" title="NetFlow Analyzer Benefits">NetFlow Analyzer Benefits</a></li> <li id="more-fbmt"><a href="/products/netflow/free-bandwidth-monitoring-tool.html" title="Free Bandwidth Monitor">Free Bandwidth Monitor</a></li> <li id="more-users-nfa"><a href="/products/netflow/top-10-reasons.html" title="Why users love NFA">Why users love NFA</a></li> <li id="more-fnta"><a href="/products/netflow/free-network-traffic-analyzer.html" title="Free Network Aanalyzer">Free Network Analyzer</a></li> </ul> </li> <div id="itom-related-products"></div> <div class="refer"><strong>Refer Resources</strong></div> <ul class="refer-res"> <li><a href="https://show.zohopublic.com/publish/h8zn33d986963282848aaa0448b412bbfa157" target="blank">NetFlow Analyzer Product Overview</a></li> <li><a href="https://www.manageengine.com/products/netflow/resources.html" target="_blank">Case Studies & White Papers</a></li> </ul> <div id="itom-lhs-img">&nbsp;</div> </div> <div class="rhs-cont"> <div class="pg-head">Security Analytics module from ManageEngine NetFlow Analyzer</div> <p>Enterprises following traditional security systems to detect cyberattacks can only detect known attacks such as DoS or DDoS. Although firewalls and other IDS tools have threat detection advantages, the use of only preknown rules or signatures will not detect all of today's zero-day intrusions. As the traffic generated each day in an enterprise network is high, detecting zero-day intrusions, internal threats, and IDS using signature-based tools can be resource intensive. What network admins should rely on is network behavior anomaly detection. These solutions help detect traffic patterns so that the unusual behavior of the network can be taken into account as an event needing immediate action.</p> <p>Security Analytics is a security monitoring module of NetFlow Analyzer that enables the Continuous Stream Mining Engine which classifies and groups events. It delivers a detailed view of the network's security posture by providing a view into information about the network's anomalies, thus helping security teams take better actions.</p> <h2>Benefits of Security module</h2> <ul> <li>Centralized agentless traffic data collection, analysis and management</li> <li>Seamless visibility into both external and internal security threats</li> <li>Context-sensitive zero-day intrusion / <a href="/products/netflow/network-anomaly-detection.html" target="_blank">network anomaly detection</a> capabilities</li> <li>Continuous overall security posture assessment</li> <li>Proactive feedback-driven access and traffic policy decisions</li> <li>Actionable and real-time decision support system</li> </ul> <h2>Technical Capabilities</h2> <ul> <li>High throughput and low latency stream processing</li> <li>Asynchronous and parallel data processing</li> <li>Rapid rules engine and flexible criteria profiles</li> <li>Contextual resource modeling and problem heuristics</li> <li>Advanced event correlation and mining algorithms</li> </ul> <h2>Why choose the Security Analytics module's add-on?</h2> <h4><strong>Auto Discard Flows</strong></h4> <p><img src="/products/netflow/images/autodiscardflows.png" alt="Auto Discard Flows" title="Auto Discard Flows" width="1680" border="0" height="1050" /></p> <ul> <li>Whitelist specific flows for distinct problems</li> <li>Extensive flow filter configuration options</li> <li>Consolidated Discard filter configuration reporting</li> </ul> <h4>&nbsp;</h4> <h4><strong>Event troublshoot report</strong></h4> <p><img src="/products/netflow/images/event-troubleshoot-report.gif" alt="Event Troublshoot Report" title="Event Troublshoot Report" width="1680" border="0" height="1050" /></p> <ul> <li>Ad-hoc forensic investigation and analysis</li> <li>Groups flow for quickly discerning patterns</li> <li>Segment flows by originating router</li> </ul> <h4>&nbsp;</h4> <h4><strong>Custom problem management</strong></h4> <p><img src="/products/netflow/images/custom-problem-management.png" alt="Custom Problem Management" title="Custom Problem Management" width="1680" border="0" height="1050" /></p> <ul> <li>Enable or Disable specific problems and algorithms</li> <li>Focus in pertinent problems of interest</li> </ul> <h4>&nbsp;</h4> <h4><strong>Auto Ignore Events</strong></h4> <p><img src="/products/netflow/images/auto-ignore-events.png" alt="Network security snapshot" title="Network security snapshot" width="1680" border="0" height="1050" /></p> <ul> <li>Whitelist specific resources for distinct problems</li> <li>Option to store ignored events for auditing</li> <li>Consolidated Ignore Filter configuration reporting</li> </ul> <h4>&nbsp;</h4> <h4><strong>Security Snapshot</strong></h4> <p><img src="https://www.manageengine.com/products/netflow/images/security-snapshot.png" alt="Network security snapshot" title="Network security snapshot" width="1680" border="0" height="1050" /></p> <p>This displays a list of grouped threats or anomalies as a problem and further, the problems are categorized in to three major problem classes (Bad Src-Dst, DDoS, Suspect Flows). <a href="https://www.manageengine.com/products/netflow/advanced-security-analytics-module-security-snapshot.html">Read more...</a></p> <h4>&nbsp;</h4> <h4><strong>Event list</strong></h4> <p><img alt="Network security event list" title="Network security event list" src="https://www.manageengine.com/products/netflow/images/event-list.png" width="1680" border="0" height="1050" /></p> <p>The &lsquo;Event List&rsquo; in Security module lists, classifies and organizes all the events that might become attacks. Also, Security module assigns severity of an event; this allows you to prioritize your actions. <a href="https://www.manageengine.com/products/netflow/advanced-security-analytics-module-event-list.html">Read more...</a></p> <h4>&nbsp;</h4> <h4><strong>Event details</strong></h4> <p><img src="https://www.manageengine.com/products/netflow/images/event-details.png" alt="network security event details" title="network security event details" width="1680" border="0" height="1050" /></p> <p>Event details gives a thorough detail about the problem. The details include network, port, protocol, TCP flag and much more. Clicking on the router name gives details with mapped destination, such as source IP and the application, port, protocol etc. used. This report can be exported as a pdf or can be mailed with just a single click.</p> </div> </div> </section> <section> <div class="container"> <div id="customer-logo" data-custlogo="nfa"></div> </div> </section> <div class="clearfix"></div> <section> <div class="clearfix sec-pTB opmRelPrd mbH"> <div class="fea-nav container"> <div class="fea-nav-link clearfix"><span data-nav="allFeaDiv3">Benefits</span><span data-nav="allFeaDiv2">Related Products</span></div> <div class="fea-nav-list"> <div id="allFeaDiv3" class="fea-list-cont clearfix"> <ul> <li>&raquo; <a href="/products/netflow/bandwidth-monitoring.html">Bandwidth Monitor</a></li> <li>&raquo; <a href="/products/netflow/bandwidth-reports.html">Bandwidth Reporting</a></li> <li>&raquo; <a href="/products/netflow/cisco-netflow.html">Cisco NetFlow</a></li> <li>&raquo; <a href="/products/netflow/netflow-monitoring.html">NetFlow Monitoring</a></li> <li>&raquo; <a href="/products/netflow/network-traffic-analysis.html">Network Traffic Analyzer</a></li> <li>&raquo; <a href="/products/netflow/site-to-site-traffic-monitoring.html">Site to Site Traffic Monitoring</a></li> </ul> <ul> <li>&raquo; <a href="/products/netflow/optimize-performance.html">Application Performance Optimization</a></li> <li>&raquo; <a href="/products/netflow/secure-your-network.html">Network Security</a></li> <li>&raquo; <a href="/products/netflow/netflow-reports.html">NetFlow Reporting</a></li> <li>&raquo; <a href="/products/netflow/scheduling-reports-using-netflow-analyzer.html">Automating Network Reports</a></li> <li>&raquo; <a href="/products/netflow/customizable-dashboard.html">Customizable Dashboard</a></li> <li>&raquo; <a href="/products/netflow/network-traffic-monitor.html">Network Traffic Monitor </a></li> </ul> <ul> <li>&raquo; <a href="/products/netflow/troubleshoot-reports-a-need-for-network-monitor.html">Faster Network Troubleshooting</a></li> <li>&raquo; <a href="/products/netflow/protocol-and-application-monitoring.html">Protocol and Application Monitoring</a></li> <li>&raquo; <a href="/products/netflow/netflow-analyzer-reports.html">NetFlow Analyzer Reports</a></li> <li>&raquo; <a href="/products/netflow/Department-wise-bandwidth-monitoring-using-netflow-analyzer.html">Department-wise Bandwidth Monitoring</a></li> <li>&raquo; <a href="/products/netflow/usage-based-billing.html">Billing &frasl; Measure Bandwidth Usage</a></li> <li>&raquo; <a href="/products/netflow/cbqos.html">Cisco CBQoS Monitoring</a></li> </ul> </div> <div id="allFeaDiv2" class="fea-list-cont clearfix"> <ul> <li class="relOpm">&raquo; <a title="Network Monitoring - ManageEngine" href="https://www.manageengine.com/network-monitoring/?relPrd">Network Monitoring</a></li> <li class="relNfa">&raquo; <a title="Bandwidth Monitoring &amp; Traffic Analysis - ManageEngine" href="https://www.manageengine.com/products/netflow/?relPrd">Bandwidth Monitoring &amp; Traffic Analysis</a></li> <li class="relNcm">&raquo; <a title="Network Configuration Management - ManageEngine" href="https://www.manageengine.com/network-configuration-manager/?relPrd">Network Configuration Management</a></li> <li class="relIpam">&raquo; <a title="Switch Port &amp; IP Address Management - ManageEngine" href="https://www.manageengine.com/products/oputils/?relPrd">Switch Port &amp; IP Address Management</a></li> <li class="relFwa">&raquo; <a title="Firewall Management - ManageEngine" href="https://www.manageengine.com/products/firewall/?relPrd">Firewall Management</a></li> </ul> </div> </div> </div> </div> </section> <section> <div class="btmBar min-mbH"> <div class="menuheader" id="btmBar"> <div class="container clearfix"> <ul class="prd-nav"> <li class="mbH btm-dwn"><a href="/products/netflow/download.html?btmMenu">Download <span class="dwn-btm-icon">&nbsp;</span></a></li> <li><a href="http://demo.netflowanalyzer.com/" target="_blank"><span class="demo-icon">&nbsp;</span><br> Live Demo</a></li> <li><a href="/products/netflow/netflow-analyzer-editions.html"><span class="comp-icon">&nbsp;</span><br> Compare</a></li> <li><a href="/products/netflow/getquote.html?btmMenu"><span class="quote-icon">&nbsp;</span><br> Get Quote</a></li> <li><a href="https://store.manageengine.com/netflow/"><span class="buy-icon">&nbsp;</span><br> Buy Now</a></li> </ul> </div> </div> </div> </section> <footer id="meCommonFooterNew"></footer> <div id="survey" data-surveyPrd="nfa">&nbsp;</div> <script src="https://accounts.zoho.com/u/info" type="text/javascript"></script> <script src="https://www.manageengine.com/js/me-v1-header-a.js"></script> <script src="https://www.manageengine.com/js/me-new-v1.js"></script> <script src="/itom/js/me-itom.js"></script> <script type="text/javascript">$(document).ready(function(){ $("#storelnk").attr("href", "https://store.manageengine.com/netflow/"); $("#forumlnk").attr("href", "https://forums.manageengine.com/netflow-analyzer"); $("#blogslnk").attr("href", "https://blogs.manageengine.com/product-blog/netflowanalyzer");});</script> <script>$(document).ready(function(){var gfdBtn= $('<span id="gfd"><a href="/products/netflow/demo-form.html"><strong>Get FREE DEMO</strong></a></span>');$("body").append(gfdBtn);}); $('.ssRhs>ul').prepend('<li><a href="tel:+18446497760"><strong>US:</strong> +1 844 649 7760</a></li>'); $('.ssRhs').append('<li><span>Direct Inward Dialing</span></li><li><a href="tel:+14089169595"><strong>Tel:</strong> +1 408 916 9595</a></li>'); </script> <script>$('[data-slideshare]').click(function(e){e.preventDefault();var getVal = $(this).attr('data-slideshare');$('.pop-container').html('<span id="close">&nbsp;</span><div class="tac"><iframe src="'+getVal+'" width="650" height="460" frameborder="0" marginwidth="0" marginheight="0" scrolling="no" style="border:1px solid #CCC; border-width:1px; margin-bottom:5px; max-width: 100%;" allowfullscreen></iframe></div>');$('.pop-box,.pop-container').fadeIn();});</script> <script>$('#rp-nfa').hide();</script> <script src="https://www.manageengine.com/js/opm-survey-form.js"></script> <script type="text/javascript">$('#fea-dcm > span').addClass('dropact').siblings('ul').show();$('#nsf-bcasam a').addClass('feaact');$('#fea').addClass('selecteddiv'); </script> </body>