Advanced Security Analytics Module (ASAM) is a network flow based security analytics and anomaly detection tool that helps in detecting zero-day network intrusions, using the state-of-the-art Continuous Stream Mining Engine™ technology, and classifying the intrusions to tackle network security threats in real time. ASAM, offered as a simple add-on module of NetFlow Analyzer, leverages the underlying platform's agentless centralized data collection and forensic analysis capabilities, to offer greater value.
No additional configuration is required as ASAM uses the NetFlow that is already being exported to NetFlow Analyzer server.
No, ASAM does not affect the performance of NetFlow Analyzer in any way.
ASAM detects a wide spectrum of threats, which are further classified as problem classes for ease of understanding. The problem classes and the problems can be seen in problem taxonomy.
ASAM can be used as an add-on with Essential and Distributed editions of NetFlow Analyzer.
Request us for an evaluation license here. We will provide with an evaluation license which will not affect the already applied NetFlow Analyzer license, also lets you evaluate ASAM for 30 days.
Yes, you can whitelist / ignore certain events. You can read on how to do that in our user guide.
You can view the pricing and purchase details at our online store.