Perform continuous real-time monitoring of activities and behaviors of workstations, servers and other network devices.
CatchWire installs without the need for wiring or infrastructure changes. It can be used to “pull” data from the network by configuring it as a remote Wireshark sensor, or it can store data internally by using a local tshark instance. It can also discretely capture, collect and report flow traffic information (Cisco NetFlow, JuniperJ-Flow, IPFIX, sFlow).
It delivers real-time data to help address common security challenges including: internal IDS, communication monitoring, data leakage, botnet and worm detection.
Endpoint Security
The demands for sharper intelligence and critical data have soared as organizations are challenged to achieve higher network security. CatchWire helps customers access real-time data for endpoint security and traffic monitoring applications:
1. Remote & Branch Offices: Extend remote endpoint monitoring and detection to the smallest offices, with no infrastructure changes or agents, and a budget-stretching price.
2. Forensics & Investigation: Understanding and preventing attacks just became easier and faster. Full data visibility and preservation. Deploys in seconds. Undetectable in use.
3. Penetration Testing & Ethical Hacking: Unique approach to validating your organization's security controls from places in the network that were unreachable before.
CatchWire serves as a gateway or bridge for applications, such as:
- Network flow sensor
- Remote Wireshark sensor
- VoIP logger
- TOR gateway
- Multiple control boxes on a single network wire
- Small VPN gateway
- Network traffic generator/analyzer
- Open source, user-built or customized applications.
Our network probes enable IT security professionals to perform continuous real-time monitoring of activities and behaviors of workstations, servers and other network devices. Our small form factor sniffers are host, application, and operating system agnostic. They are able to observe bi-directional traffic and send packets to a Wireshark network protocol analyzer or export NetFlow to any of your favorite collector and analytics solutions.
CatchWire is the best tool we have found for troubleshooting customer sites. CatchWire's slim and sturdy aluminum design makes it ideal to just slip into a padded envelope to ship to our customers. With many available power options, including PoE, we rarely need to send anything more than the CatchWire itself. This adds to installation simplicity and there is less chance of leaving anything behind after the problems are solved.
Read more here.
One of my projects is centered around a network-based audio device. I need to evaluate the device and investigate its control protocol. While the basics of the protocol are published, much of the style of usage is not documented. Therefore I am using Wireshark for the evaluation. By placing CatchWire between the device and the network switch I can remotely monitor the traffic from the several clients on different computers and examine the relative timing of the device’s responses.
Read more here.
Your CatchWire has been a great help in tracking down a problem with a file clean-up process in one of our applications that is being migrated to a new storage system. When the temporary storage location was pointed to our new CIFS storage system the process would fail, but if we used our old Windows Server with a CIFS share it would work correctly. After deploying CatchWire between our servers and the new storage systems we found timing issues in the file process.
Read more here.
— A.C. (Australia)