NetFlow Collection and Analysis Using NFCAPD, Python, and Splunk

NetFlow data is often collected for network monitoring and management, but it has many applications for the security analyst. NetFlow data can be used to identify variations from established traffic baselines, traffic originating from critical systems, and communications with known bad external...
February 10, 2015

All papers are copyrighted. No re-posting of papers is permitted