The purpose-built engine within ThreatEye Analytics enables real-time, streaming machine learning (ML) analysis of DragonFly Probe flow records. ThreatEye’s streaming ML provides a light-weight footprint allowing its models or “analyzers” to learn and alert in real-time, even at high data rates. ThreatEye analyzers run in parallel and allow for multiple traffic insights and anomaly detections, in tandem.

Designed to ingest DragonFly Probe’s augmented flow records, ThreatEye Analytics is capable of storing petabytes of enriched flow data, enabling analysts to query and interactively explore network traffic data for insights, including fault detection, threat hunting, and incident response operations.

Contact us for more information.

ThreatEye Visualizer screen