Download PDF version Contact company

ExtraHop, a pioneer in cloud-native network detection and response (NDR), launches ExtraHop IDS, which integrates with the ExtraHop Reveal(x) platform to offer a new, simplified approach to intrusion detection for deeper coverage and full-spectrum investigation.

As part of its release, ExtraHop also announced several product enhancements, including Automated Retrospective Detection and native integration with Palo Alto Cortex XSOAR.

Simplified cloud management

Despite being a regulatory requirement for some of the most critical industries including financial services, healthcare, and retail, legacy intrusion detection systems (IDS) have historically fallen short. ExtraHop IDS is a next-gen approach to intrusion detection, coupling Reveal(x)’s NDR capabilities with high-fidelity, curated detections for deeper CVE coverage, visibility into encrypted traffic, advanced triage, and simplified cloud management.

Despite being a regulatory requirement for some of the most critical industries including financial services

With ExtraHop IDS and Reveal(x), security teams can now deploy and manage IDS sensors from the same platform as their NDR sensors for streamlined detection and full-spectrum investigations. "So many organisations rely on IDS, yet legacy products don't offer the detection, investigation, and forensic capabilities that they need to appropriately contextualise and respond to threats," said Chris Kissel, Research Vice President of Security Products, IDC.

Enhanced response capabilities

"As compliance regulations evolve and attack surfaces rapidly expand, organisations require a solution that can keep up and offer deeper detection coverage. ExtraHop is doing just that with ExtraHop IDS. Real-time visibility into encrypted traffic and enhanced response capabilities with integration into Reveal(x) workflows offer security teams a defense-in-depth approach that addresses threats today, tomorrow, and in the future."

ExtraHop now offers Automated Retrospective Detection, which automatically searches through historical network data to find evidence of previously unknown threats in past activity as soon as new indicators of compromise (IOCs) are introduced. When a never-before-seen malware or zero-day exploit emerges, customers will be immediately alerted to detections of past attacks, minimising dwell time and overall impact, while also saving users manual research time.

Simple and secure remediation

ExtraHop natively integrates with Palo Alto Networks Cortex XSOAR for simple and secure remediation

ExtraHop natively integrates with Palo Alto Networks Cortex XSOAR for simple and secure remediation. To reduce complexity and streamline investigations, joint customers can create a Cortex incident as soon as ExtraHop identifies malicious or non-compliant behaviour on the network. 

While bad actors are constantly adjusting their tactics and techniques to bypass traditional security solutions, the network has been proven to be the only single source of cybertruth - offering unparalleled visibility and insights across hybrid environments,” said Jesse Rothstein, co-founder and CTO, ExtraHop.

Our goal in 2023 is to remove any complexities associated with NDR and make deployments as seamless and effective as possible. With these new offerings, we’re confident customers will reap the benefits of a robust NDR solution and gain the power to see more, know more, and stop more cyberattacks.”

Download PDF version Download PDF version

In case you missed it

SHIELD certification: enhancing security and stakeholder collaboration
SHIELD certification: enhancing security and stakeholder collaboration

In today's complex security landscape, ensuring the safety of building occupants and assets requires more than just cutting-edge technology. Holistic approach The SHIELD certifi...

What are the new security applications in colleges and universities?
What are the new security applications in colleges and universities?

College campuses are meant to be places of learning, growth, and community. Fostering such an environment requires the deployment of policies and technologies that ensure safety an...

Real-time security analytics by Winston-Salem Police Department with Verkada
Real-time security analytics by Winston-Salem Police Department with Verkada

The Winston-Salem Police Department (WSPD), internationally accredited by the Commission on Accreditation for Law Enforcement Agencies (CALEA), is dedicated to proactive, data-driv...

Quick poll
Which feature is most important in a video surveillance system?