Advanced ICS Network Security Monitoring
SpyGOOSE is an advanced ICS Intrusion Detection System. SpyGOOSE monitors all network traffic identifying threats to your critical infrastructure. Unauthorized devices and communications, attacks on the protocol and invalid function codes are all identified and reported in real time.
SpyGOOSE is a watchdog on the SCADA network, constantly monitoring all traffic that traverses at the Switch level.
- Man In The Middle Attacks
- Unauthorized Devices
- Attacks on the protocol
- Invalid Function codes
- Malformed packets
- And more
SpyGOOSE is 100% Passive and has 0% Impact on the Network
Unlike traditional IDS systems that ignore Layer 2 traffic, SpyGOOSE specializes in capturing and analyzing the Layer 2 traffic and everything above it. Everything that connects to the network must communicate at Layer 2.
Integrates with Your Infrastructure
Because SpyGOOSE alerts are not sent via proprietary messages, they are easily integrated into virtually any event management system. You don’t need another event monitoring console. You don’t need another stovepipe solution or point product that stands alone. SpyGOOSE integrates with every SIEM product. Is your SIEM too far away to get realtime alerts? SpyGOOSE also integrates with most firewalls or IPS solutions. Your messages can be collected by almost any sensor and forwarded in the same way other events are sent to the data center.