Solera Networks has proclaimed its partnership with Sourcefire, Inc in June 16, 2010. It is recalled that this company is among the leading network forensics products and services company, and now, they can integrate the award-winning network forensics technology openly into Sourcefire’s event analysis. Through this, the Sourcefire’s packet analysis functionality is finally developed to comprise full session capture, providing detailed forensics for whatever security event.

The partnership becomes very effective for shifting incident response to some security event, while also providing full detail in the interest of understanding the circumstances before and after the security event.
According to Steve Shillingford, president and CEO of Solera Networks, Sourcefire is well-known in intrusion detection and prevention. He said that today’s organizations rely on Sourcefire technology to defend their critical assets. He also added that the combination of high-speed active network forensics with their platform turns out to another valuable tool in their arsenal to combat ever-changing and non-stop attacks. Network forensics and instant replay can agree on the complete source and range of any security event in the quickest possible time. This seems like a surveillance or DVR.

Sourcefire IPS vulnerability and anomaly-based inspection methods make the perfect combination to analyze network traffic and avoid threats, which can ruin the network. Solera Networks forensics appliances work to capture, index, record and replay all traffic, even on the fastest modern 10Gb networks.

The users of Sourcefire see parts or slices of network traffic surrounding a security alert. Such slices are set according to source/destination port, time, protocol, and many other parameters. The Solera DeepSee Forensics Suite rebuilds and delivers complete record and monitoring of anything crossing the network, counting artifacts (emails, files, malware, etc.) contained in the traffic. The combined solution keeps away known threats.

Martin Roesch, founder and CTO of Sourcefire said relates that threats are becoming more sophisticated and targeted, so he suggested a powerful advantage is gained in being able to see the full content of every attack on your network.

Network forensics from Solera Networks complements Sourcefire’s IPS and RNA products by showing everything that led up to and the best ways to prevent an attack. Having the authentic record of every network packet, consumers can understand the nature of the attacker so as to anticipate future attack attempts.

With the playback of traffic surrounding any security alert, the historical network record is allowed to authenticate updated signature files. Solera DS appliances have an exact replica of an organization’s network traffic, letting analysts to replay and review old traffic to a recently updated Sourcefire IPS, then, they can validate the latest incremental protection delivered by Sourcefire’s Vulnerability Research Team (VRT).