NetWitness releases free version of security software

Cybersecurity vendor NetWitness releases a free version of its Investigator network-monitoring software.

NetWitness, a vendor of networking threat-analysis software, is offering a free version of its NetWitness Investigator package by download, the company said Monday.

NetWitness Investigator is different from most other network-scanning software in that it uses forensic tools to examine applications and changes on content on the network, as well as attacks coming from outside the network, said Amit Yoran, NetWitness' chairman and CEO. The software package gives users detailed analyses of malicious activity on their networks, he said.

NetWitness Investigator is designed to address gaps in other cybersecurity products, he said. It can help users identify cybersecurity problems, insider attacks and sophisticated outsider attacks, and it can help with IT audits and antifraud investigations, the company said.

The company, which split off from ManTech in 2006, has customers in the U.S. government and the financial industry, according to NetWitness, based in Herndon, Virginia.

NetWitness Investigator doesn't rely on a list of known threats to protect users from cybersecurity threats, said Yoran, former director of the National Cyber Security Division of the U.S. Department of Homeland Security. Instead, it looks for changes on the network and alerts users of possible problems, he said.

Sophisticated criminals and attackers sponsored by nations aren't going to use commonly known methods to attack their victims, Yoran said. "They're going to be using something a little more complex," he said.

Users of many cybersecurity products "are still unable to see a lot of the right information" about their networks, he added. Companies can be lulled into a false sense of security when they're using standard cybersecurity products, Yoran said.

Yoran hopes the free version will drive customers to the company's other products and services, and he sees the free download as a way to expose potential users to a new type of network monitoring, he said.

"We thought this was the right thing to do to contribute back to the community," he said.

The free version of Investigator is fully functional and ready for users to run on their networks. The free license allows up to 25 simultaneous users with a data capture of up to 1G byte.

It also contains the major features of the Investigator Enterprise version, available for purchase. NetWitness has a YouTube demo page for Investigator, and the download is available on the NetWitness site.

The enterprise version of the software comes with Linux-based network appliances and is capable of remote network monitoring. The enterprise package of products includes Informer, an automated reporting engine, and Decoder, a data recording package.

References show all

Comments

1

terry morris

Sat 14/03/2009 - 11:01

The world is suffering. PC's

The world is suffering. PC's are down. So answering your much asked question? "Who Wrote the Conflicker worm. Microsoft itself, wrote the Conficker worm". Ah!! proof!... I hear you ask?. Only The Patches created by Microsoft seem to work?. All the big company's are using Microsoft equipment. Such as (Norton)-(Virus scan+)-(NoD Anti-virus), and (Bitdefender), to name just a few. And who are making a fortune selling their Software online. I have tried 46 free anti-virus software programs, and not one worked.... I paid for my Vista, and I will not pay again to register it (MS is double dipping). Therefor no patch, no help?. Some people call that Intimidation, "Me?, I call it Blackmail. This is payback by Microsoft, Because Pirated and unregistered copy's of their Product, Has angered them enough to take illegal action, and the rest of the world will have to pay. Until conficker came along, things were, "O! so slow", for anti-virus company's. So when Microsoft offered them conficker and its patches and know-how , and all the relevant information they would need. Well they wouldn't turn that kind of offer down... would they?. (terry morris)
(If you can put someone in a position where they think they are in trouble, and then be the one to fix it, you automatically gain their trust.) quote from CISCO.

2

BPSEKHON

Wed 18/03/2009 - 17:22

HIGHLY IMPRESSIVE

Hi all you tech guys there.the article which i read in this website was really good or highly impressive if have to call that.I am into technology from the last so many years and i know every inch of what is happening in technology.the thumb rule is that you have to be constantly remain updated with the changing times in technology be that notebooks mobile PDAs or desktop
computers.I believe in give my 100% to computer science just as Bill Gates gave when he began his own Microsoft he is my idol and Abraham Lincoln the US president.

BPSSEKHON

3

Chuck

Wed 10/03/2010 - 03:45

I think free offerings are available from almost all the <a href="http://www.sophos.com">security software</a> players. The need for these programs is at an all-time high, and coupled with the economy instilled try before you buy pathos, a free sampling of the quality available more than makes sense.

Post new comment

The content of this field is kept private and will not be shown publicly.
Users posting comments agree to the TechWorld comments policy.
Login or register to link comments to your user profile, or you may also post a comment without being logged in.
Related Coverage
Related Whitepapers
Latest Stories
Community Comments
Tags: network monitoring software
Whitepapers
All whitepapers

Twitter Feed

Whitepapers

- + c

Latest News

- + c
more