NetMon Freemium provides out-of-the-box, browser-based interfaces that contain an immense amount of network traffic data for a hunter. We established NetMon Freemium’s scope of visibility as shown below in Figure 1.įigure 1: Network traffic visible to LogRhythm NetMon Freemium 2. Its network hosts typical office devices, including phones, workstations, printers, internal application and database servers, and a local physical security system.
Our client’s target network had less than 20 employees and workstations, and less than 25 Mbps of traffic. The first step to test how NetMon Freemium could help our client detect threats on its network in real time was to establish the scope of the network. In July 2017, we received permission from a small business client to prototype NetMon Freemium on its internal network and investigate its features. We wanted to see how NetMon Freemium could help network security analysts - “hunters” as we call them - at small businesses quickly baseline network traffic, identify anomalies, and pursue further investigation. My team and I were excited when we heard that LogRhythm provided a free version of its network security monitoring product, LogRhythm NetMon Freemium. When I worked at Totem, a software-as-a-service (SaaS) solution that offers cybersecurity assessments and compliance monitoring and asset management of building control systems, the company always strived to help businesses find ways to supplement their existing cybersecurity tool suite with low-cost or free network-monitoring solutions.
His work configuring LogRhythm NetMon Freemium dashboards for a former employer helped the organization win Best Security Hunting Dashboard in the 2017 LogRhythm “Rule Your Network Challenge.” A Free Network Monitoring Tool for Network Security Analysts Jim configures easy-to-use tools to develop intuitive solutions for small business cybersecurity programs. He is an ambassador of cybersecurity education and empowerment for small businesses. Jim Lee is an information security analyst and guest blogger from Seismic Software Inc.
0 kommentar(er)
