PacketOwlVirtual Security Appliance
Network Intrusion Detection & Security Monitoring
ALL-IN-ONE NIDS, NSM, AND NDR UP TO 100G
Event Logs I PCAP Capture I SIEM Alerts
SURICATA ON STEROIDS
Industry’s Highest Performance NIDS, NSM, and NDR Appliance
The NEOX PacketOwlVirtual Series is a versatile all-in-one Network Intrusion Detection (NIDS), Network Security Monitoring (NSM), and Network Detection & Response (NDR) probe virtual appliance for cloud, virtualized data center, and branch edge applications. With its Open Suricata-optimized threat detection, PacketOwlVirtual is the industry’s most advanced and scalable virtual solution in its category with analysis that is designed to identify, analyze, log, and alert for cyber threats in real-time. With its lossless design, the PacketOwlVirtual can also capture and analyze the corresponding event-triggered packet data in PCAP format for forensics analysis, incident response, and compliance.
- NX-NSMPO-VM-2 model is a virtual probe for using 2 CPU cores and up to 10TB of cloud storage.
- NX-NSMPO-VM-5 model is a virtual probe for using 5 CPU cores and up to 50TB of cloud storage.
- NX-NSMPO-VM-10 model is a virtual probe for using 10 CPU cores and up to 100TB of cloud storage.
PACKETOWLvirtual IDS + NSM + NDR PROBE
HIGHLIGHTS
- The industry’s fastest and most versatile “Suricata-on-Steroids” solution with an all-in-one IDS + NSM + NDR appliance
- Compatibility with Suricata signature-based ruleset and user-configurable rules
- Purpose-built for Hybrid-Cloud, Multi-Cloud (AWS, Azure, GCP), Software-Defined Data Centers (VMware), Service Providers, Virtual Branch and Edge, and other virtual deployments
- Highly scalable security events-triggered Logs and associated Packet Capture
- Tamper-proof logging for audit and compliance
- Automated Log Management with smart Log Rotation and Log Compression
- Seamless Integration with SIEMs, NDR tools & Syslog. North-bound Alerts for SIEM (Splunk etc.) and SOC consumption
- Integrated with Stamus Clear NDR solution as a Virtual NDR Probe
- Seamless integration with existing Security Ecosystems
KEY FEATURES
- Cloud-native Open Suricata-based IDS, NSM, and NDR
- Instance-dependent scalable events/second handling
- Automated Log Management with smart rotation/compression
- Seamless Integration with SIEMs, NDR tools & Syslog. North-bound Alerts for SIEM and SOC consumption
- Smart Forensic and Zero-Loss Packet Capture (PCAP) at 100Gbps CTD with cloud or on-prem exported storage with smart conditional capture
- Precision Threat Hunting with Lua scripting & forensic PTP timestamps
- Compliance with Government/Federal EO 14028, M-21-30 & FIPS 140-2
MODELS
| SKU | ANALYSIS THROUGHPUT | EVENT HANDLING | EVENT LOGGING | PACKET CAPTURE | DISK CAPACITY |
|---|---|---|---|---|---|
| NX-NSMPO-VM-2 | Instance depended | Instance depended | Instance depended | 10 Gbps | 10 TB |
| NX-NSMPO-VM-5 | Instance depended | Instance depended | Instance depended | 25 Gbps | 50 TB |
| NX-NSMPO-VM-10 | Instance depended | Instance depended | Instance depended | 50 Gbps | 100 TB |
DOCUMENTS
SERVICE & SUPPORT
Unparallel Multi-Level Service & Support for Peace of Mind
NEOXPacketShark Appliances come with NEOX SILVER Support and can be upgraded to GOLD Support for advanced replacement in case of a hardware failure.
FEATURED CONTENT
Creating Solutions for Your Success
Solution brief
NEOX & STAMUS Clear NDR
data sheet
PacketOwl NIDS/NSM/NDR
Product Brochure
A Complete Guide to Products