Sign in
Categories
Your Saved List Partners Sell in AWS Marketplace Amazon Web Services Home Help

Dynamite Agent

By: Dynamite Analytics Latest Version: Dynamite Agent v1.07
Linux/Unix
Linux/Unix

Product Overview

Dynamite Agent enables Network Detection and Response (NDR) capabilities for AWS cloud environments. NDR alerts and metadata represent the ground truth of network activity and allow detection of highly sophisticated cyber threats. By strategically deploying Dynamite Agents in AWS environments, organizations can perform in-depth traffic analysis of their network segments and valuable assets.

Dynamite Agent is built on the industry-leading network traffic inspection technologies Zeek (formerly Bro) and Suricata. Zeek delivers network metadata, such as comprehensive connection telemetry, application-layer transcripts and artifacts, going far beyond NetFlow and other types of flow data. Suricata complements Zeek with rule-based network intrusion alerts based on the top IDS signature dataset. Dynamite Agent uses AWS VPC Traffic Mirroring to passively listen to the traffic without any network interference.

Contrary to most 3rd party NDR solutions, Dynamite Agent can act autonomously and is designed for integration with existing SIEM/SOAR cyber monitoring solutions (e.g. Splunk, Elastic, etc.). As a result, Dynamite Agent seamlessly fits into an existing SecOps process and toolset without reliance on external systems and out-of-network transfer of analytic data.

Version

Dynamite Agent v1.07

Operating System

Linux/Unix, CentOS 8.2.2004

Delivery Methods

  • Amazon Machine Image

Pricing Information

Usage Information

Support Information

Customer Reviews