Malware prevention provider FireEye and network forensics company Solera have announced a technology partnership to deliver an integrated security solution that will not only block an attack, but also help IT security professionals figure out exactly what happened after the fact.
FireEye’s Malware Protection System and Solera Networks’ network forensics platform – both of which are appliance-based – have been integrated to deliver a single solution for capturing detailed analytics of cyber security attacks, including zero-day and advanced persistent attacks. The integrated offering will help administrators understand the contextual details of what happened before and after an incident that was blocked – at a greater level of granularity than ever before.
FireEye will provide packet-level detail (PCAPs) of an attack alert while Solera Networks will simultaneously provide a full, before-and-after network capture and replay capability of that attack, so administrators have a full context for what happened. The Solera DS network forensics appliance records every packet at line rates up to 10Gbps on physical and virtual networks for full event reconstruction.