Statements (42)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
Network security appliance
|
| gptkbp:category |
Cybersecurity
Security operations Network monitoring Intrusion detection Network traffic analysis Digital forensics |
| gptkbp:developedBy |
gptkb:RSA_Security
|
| gptkbp:function |
Capture network traffic
Extract metadata from network traffic Parse network protocols |
| https://www.w3.org/2000/01/rdf-schema#label |
NetWitness Decoders
|
| gptkbp:integratesWith |
gptkb:NetWitness_Investigator
gptkb:NetWitness_Concentrators NetWitness Brokers |
| gptkbp:partOf |
gptkb:NetWitness_Platform
|
| gptkbp:supports |
Scalability
Role-based access control Data retention policies Packet filtering Alerting Customizable rules Integration with SIEM Application layer analysis Automated parsing Custom protocol parsers Encrypted traffic analysis Full packet capture High availability deployment Integration with NetWitness Endpoint Integration with NetWitness Logs Integration with NetWitness Orchestrator Integration with threat intelligence feeds Metadata indexing Multiple network interfaces Real-time analysis Session reconstruction |
| gptkbp:usedFor |
Incident response
Threat detection Network forensics |
| gptkbp:bfsParent |
gptkb:NetWitness_Broker
|
| gptkbp:bfsLayer |
8
|