Network Traffic Analysis (NTA) Tools

Auvik's cloud-based network management and monitoring software gives users insight into the networks they manage, and automates complex and time-consuming network tasks. Real-time network mapping and inventory mean users know what's where, even as users move. Automated config backup…

SolarWinds Netflow Traffic Analyzer is a network monitoring tool within the broader SolarWinds ecosystem. It includes core traffic monitoring features, as well as customizable traffic reports and alerts.

Datadog is a monitoring service for IT, Dev and Ops teams who write and run applications at scale, and want to turn the massive amounts of data produced by their apps, tools and services into actionable insight.

ManageEngine's OpManager is network performance monitoring software.

Cisco Nexus Dashboard provides a simplified, centralized data center dashboard that enables businesses to manage their hybrid cloud network operations.

WhatsUp Gold developed by Ipswitch (acquired by Progress Software May 2019) offers network performance monitoring and mapping. It supports core monitoring features, including automated workflows and network capacity planning, and monitors across hybrid environments.

In addition to their incident response service, Rapid7 offers InsightIDR, a combined XDR and SIEM that provides user behavior and threat analytics.

Cisco Stealthwatch is a network behavior analysis product based on technology acquired by Cisco with its Lancope acquisition in 2015.

Palo Alto Network’s WildFire is a malware prevention service. It specializes in addressing zero-day threats through dynamic and static analysis, machine learning, and advanced sandbox testing environments.

Darktrace AI interrupts in-progress cyber-attacks, including ransomware, email phishing, and threats to cloud environments. It's able to detect and establish baselines for your organization so it can make the distinction between what is and what isn't normal network activity for…

Flowmon Anomaly Detection System (Flowmon ADS) by Kemp is a network security solution that analyzes network traffic from multiple perspectives to counter malicious behaviour and cyberattacks. By using a combination of detection methods, including machine learning, adaptive baselining,…

Mist’s Premium Analytics services offer enterprises network visibility and business insights that drive their digital transformation journey. This service provides insights into your network and business operations while overcoming the complex challenges associated with the influx…

Trellix Network Security (formerly FireEye Network Security and Forensics products) combines network traffic analysis and network forensics for attack analysis .

NetFlow Analyzer is a complete bandwidth monitoring tool that utilizes flow technology to monitor and analyze network bandwidth usage. It helps users identify and avoid bandwidth delays and bottlenecks with customized reports, and set threshold-based email and SMS alerts to help…

Verizon acquired ProtectWise, the Denver-based network security company of the same name, and the ProtectWise technology forms the basis for Verizon Network Detection and Response service, a cloud-based real-time situational awareness and forensics software tool for incident detection…

Plixer is a developer of network management software with a focus on network traffic analysis, network security, threat detection and network optimization, headquartered in Kennebunk, Maine. Plixer Scrutinizer collects, analyzes, visualizes, and reports on data from every network…

F5 Networks provides the SSL Orchestrator, a high-performance decryption, analysis, and re-encryption tool for SSL/TLS traffic across the network to locate threats or data exfiltration efforts concealed in encrypted traffic.

The Symantec Encrypted Traffic Management solution (formerly from Blue Coat Security) delivers encrypted traffic management solutions providing comprehensive, policy-based visibility and control over encrypted traffic, maximizing its benefits and minimizing its risks. According to…

SecBI headquartered in Tel Aviv offers an autonomous threat detection network security application for enterprises and MSSPs support threat behavior detection and forensic investigation post-incident.

Noction Flow Analyzer (NFA) is a flow-based monitoring and reporting software that collects, stores, and presents both real-time and historic traffic data across an entire network. It helps to analyze and understand a network’s traffic patterns, bandwidth utilization, hosts and…

BrightVue, from Veryx Technologies, is an XDR solution designed to provide network visibility and security for mission-critical digital infrastructure. It provides securities for systems and devices on-premise or in the cloud. It is available in two editions: Veryx BrightVue NDR…

Veryx Cloudmon provides visibility and monitoring capabilities for digital businesses utilizing cloud & data centers as well as for telco networks that need to deliver consistent network services. The vendor states a key differentiator in Cloudmon is visibility and the ability…

Ettercap is a comprehensive suite for man in the middle attacks. It features sniffing of live connections, content filtering on the fly and many other features. It supports active and passive dissection of many protocols and includes many features for network and host analysis. It…

Kismet is a wireless network and device detector, sniffer, wardriving tool, and WIDS (wireless intrusion detection) framework. Kismet works with Wi-Fi interfaces, Bluetooth interfaces, some SDR (software defined radio) hardware like the RTLSDR, and other specialized capture hardware.…