KUALA LUMPUR, March 3 (Bernama) -- Packet capture authority, Endace, has announced OSm™ 7.1 for the EndaceProbe™ Analytics Platform.

This new release enables analysts at all levels to gain deeper insight into malicious network activity from packet capture data quickly and easily.

The new features benefit customers by enabling security analysts to easily reconstruct and extract files from recorded packet data to rapidly understand the nature and extent of threats or breaches.

Analysts can analyse the actual files - malware, ransomware, executables, zip archives, exfiltrated data, and more – used by attackers to compromise user and network security and steal data. This gives analysts certainty about exactly what happened.

Analysts are allowed to generate detailed logs - including DNS, HTTPS, TLS, SMTP, database transactions, and many others - from recorded packet data, giving analysts rich contextual insight into activity that has occurred across the network and enables more accurate threat assessment and response.

Enables MSSPs or organisations with multiple tenants to securely share packet recording infrastructure. This allows teams from different organisations or divisions to take advantage of continuous packet recording while keeping each organisation’s data separate.

Continuous, always on, packet capture has always been the gold standard for understanding the threats traversing networks. However, until now, packet analysis has often been limited to senior security analysts with deep experience in packet forensics.

The OSm 7.1 release makes packet capture more useful to security team members with little or no packet forensics experience.

“Recorded network traffic is key to solving the most complex and threatening security incidents,” says Cary Wright, VP of Products at Endace in a statement. “These new capabilities, combined with the EndaceProbe platform’s always-on, global-scale network recording puts vital evidence in the hands of SecOps teams – so they can respond to threats faster and with greater confidence.”

OSm 7.1 is available immediately for EndaceProbe customers. For more information, visit www.endace.com.

-- BERNAMA