Statements (51)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:industrial_equipment
|
| gptkbp:category |
cybersecurity
security information and event management network forensics |
| gptkbp:component |
gptkb:NetWitness_Platform
|
| gptkbp:developedBy |
gptkb:RSA_Security
|
| gptkbp:function |
enable fast search and retrieval of network data
index network metadata store network metadata |
| gptkbp:hasFeature |
data compression
API access load balancing compliance reporting data deduplication role-based access control scalable architecture high availability centralized management data retention policies integration with third-party tools multi-tenancy support real-time analysis support for regulatory compliance integration with SIEM tools distributed deployment integration with threat intelligence feeds metadata aggregation alerting and notification customizable indexing data export capabilities high-speed indexing role in incident investigation searchable metadata repository support for encrypted traffic analysis |
| gptkbp:integratesWith |
gptkb:NetWitness_Archiver
gptkb:NetWitness_Broker gptkb:NetWitness_Decoder gptkb:NetWitness_Investigator |
| gptkbp:manufacturer |
gptkb:RSA_Security
|
| gptkbp:partOf |
gptkb:NetWitness_Suite
|
| gptkbp:supportsProtocol |
gptkb:DNS
gptkb:HTTP gptkb:TCP/IP gptkb:UDP SMTP |
| gptkbp:usedFor |
incident response
threat detection network traffic analysis |
| gptkbp:bfsParent |
gptkb:NetWitness_Broker
|
| gptkbp:bfsLayer |
8
|
| https://www.w3.org/2000/01/rdf-schema#label |
NetWitness Concentrators
|