시큐비스타

시큐비스타

Cloud-native, Security Observability Platform.

Cloud Cyber

Cloud-native, Security Observability Platform.
Cloud CYBER is an NDR platform for Could that supports high-performance remote packet capture and collection in a cloud environment and supports PacketCYBER's advanced security analytic functions.

  • Capture and transfer traffic from various cloud assets at minimal resource usage
  • The sensor operates on the target server, captures traffic, and transmits (compresses) it to the filter application manager.
  • The manager analyzes packet streams collected from multiple sensors with PacketCYBER’s rich security analytics functions.

CloudCYBER provides cybersecurity monitoring and threat visualization through cloud traffic analytics across various cloud workload types, including VMs, Kubernetes, Linux, and Windows.

[Cloud CYBER] Sensor, Manager

Key Features (Only Cloud CYBER)

Collect all communication traffic
flowing in and out of cloud assets
  • Self cloud traffic collection without eternal traffic collection infra. (i.e. Virtual Tap etc.)
  • Selected traffic collection through filtering
  • Effective traffic streaming with compression
Detection of real-time file inflow
and outflow and malware threats to the cloud
  • Machine Learning (ML)
  • File reputation
  • YARA Rule
  • Mal-doc detection scripts
Real-time Attacker TTP Detection
  • Port scanning
  • Address scanning
  • Web-based malware transmission
  • Email-based malware transmission
  • Dre-by-download behavior
  • SSH password brute force attack
  • FTP password brute force attack
  • RDP password brute force attack
  • Network intrusion (exploit)
  • Application Exploit
  • Suspicious outward-facing communications
  • Covert Channel
  • C&C detection
  • C&C evasion technology (DGA / Fast-Flux)
  • Suspicious data leak (Large Upload)
  • SSL/TLS fingerprint-based malware detection
Effective Cloud Traffic Collection
  • Provides traffic collection infrastructure on its own without relying on service providers or 3 Party Cloud traffic collection infrastructure (i.e. virtual TAP)
  • Lightweight packet capture & streaming without additional costs
  • Supports VMs, Kubernetes and Linux and Windows
Secure Business Value
  • Secure cloud assets to ensure availability and efficiency of critical business services
  • Real-time threat detection and risk management for under attack Cloud assets
Provides Cloud Threat Visibility
  • Provides attack kill-chain information unlike other cloud-native security solutions that spew a lot of alarms
  • Real-time monitoring of threats to cloud assets to enable rapid response