Next Previous




PRODUCTS > Flowmon > Overview
Overview - Solution for Security Operations

Solution for Security Operations Use Cases

 Network Behavior Analysis & Anomaly Detection

Automate detection of operational and security anomalies in your network. Stop cyber risks that overcome perimeter or end-point protection.
 Unknown Threat Detection

Based on dynamic learning your business behaviour patterns and data flows analytics, Flowmon uncovers malicious activity and helps to stop malware spreading throughout your organisation.
 Encrypted Traffic Analysis

Visibility into SSL/TLS handshake allows analysing, reporting and alerting on compliance of cipher suites, certificates, lengths of the keys, etc, without the need of decryption.
 Ransomware Detection
Ransomware is a type of malicious attacker activity or a code designed to deny access to data and systems and demanding payments for restoring access to them.
 Seamless Integration with SIEM

Report detected events via integration with SIEM systems, surveillance and incident handling systems. QRadar integration is available via native Flowmon app, REST API and syslog.
 Malware Detection

Signature-less detection methods based on machine learning continuously observe traffic, learn behaviour patterns and alerts on malicious activity.
 Automated Incident Response

Integrate Flowmon with firewalls and SDN controllers to fully automate the reaction to a security incident. Or just script your own mitigation scenario to be triggered when a security event occurs.
 Detection of Insider Threats

Early detection handled by advanced behaviour analycs engine, automated alerting and even retrospective data for forensics help to cope with botnets, data breaches, malware and privilege misuse.
 Unwanted Application

Enforce your compliance policies on applications. Get alerts on undesired VPN, anonymisation services, BITTORRENT downloads, and more.
 Early Detection of Ransomware

Take advantage of a leading behaviour analytics system in situations when every minute counts. If a specific threat is detected, just set your own behaviour pattern and mitigate damage.
 User-defined Behaviour Pattern
Customise and extend detection capabilities of the system by using provided syntax to search over flow data including L7 information for specific behaviour patterns.
 BYOD Policies Enforcemen

Manage BYOD risks to your infrastructure. Alerts on permitted OS version, HW vendors, suspicious utilisation of the infrastructure helps you to keep BYOD compliance and deliver flexibility your users need.
 Crypto Mining Detectio

Detect and stop crypto mining on your network. By using behaviour patterns and advanced analytics, Flowmon detects and stops crypto mining software.
 Detection of Botnets

Defeat botnets by detecting their natural behaviour. Flowmon's machine learning algorithms detect unusual network traffic, pinpointing the C&C communication and attacks led from your infrastructure.




SecureOne is a partner centric technology distributor that specialize in secure IT networking solutions, services and support. Principals and resellers partnering with us for proven expertise, enablement resources and overall business execution. We are a preferred distribution partner for many of today's leading and emerging networking and security products including SOPHOS, Cyberoam, Kemp, Paessler, Acunetix, Parallels, IP-guard, Altaro, AISHU, SonicWall, Mushroom Network, Info Express & etc.

Copyright © SecureOne Distribution Sdn Bhd. All Rights Reserved