Stamus Security Platform consists of two components: Stamus Network Probes and Stamus Central Server. Each play a critical role in scaling the system.
* Stamus Networks appliances are required to monitor data rates above 10 Gbps
The modern enterprise IT architecture includes resources in your facilities as well as in public and private cloud environments.
Your network "perimeter" has expanded dramatically and so has your attack surface. In order to eliminate blind spots, it is crucial to monitor the network for east-west and north-south traffic at all these sites. Stamus Security Platform is designed to do just that.
Stamus Security Platform is available in two license tiers to fit the needs of your organization.
The table below summarizes the differences between these two license tiers and the capabilities of the open source SELKS platform.
|Feature||SELKS||Stamus ND||Stamus NDR|
|Signature and IoC list - based threat detection||X||X||X|
|Basic Threat Hunting||X||X||X|
|Flow and protocol-based data enrichment and event capture||X||X||X|
|Tagging and classification for auto event triage||X||X|
|Guided threat hunting||X||X|
|Machine learning detection engines||X|
|Algorithmic detection engines||X|
|"Sightings" anomaly detection engines||X|
|Stamus threat intelligence and customizable detection||X|
|Asset-oriented host insights||X|
|Declarations of Compromise™ - high fidelity threat notifications||X|
Stamus Security Platform is a network detection and response (NDR) for large enterprises and managed service providers who need response-ready and high-fidelity network threat detection to trigger a response through their SOAR, IR or XDR system.
Enterprises reduce risk by uncovering known and unknown threats to critical assets from their cloud and on-premise networks using broad-spectrum threat detection that includes machine learning, signatures, custom logic and guided threat hunting. Security teams avoid alert fatigue because the system notifies incident response systems and personnel only when urgent and imminent threats are identified.
Unlike technology-first NDR solutions, Stamus Security Platform provides open interfaces for event data output as well as for easily integrating third-party and custom threat intelligence and rulesets. By providing transparent, explainable results, backed up with extensive evidence, security teams can dramatically accelerate incident response. And finally, the integrated guided threat hunting interface helps security teams proactively uncover hidden threats.
Stamus Security Platform is a turnkey network threat detection and response system for organizations with small IT staff who need to meet compliance objectives, whose environment does not lend itself to endpoint detection solutions, and who want an easy-to-deploy system that operates like a smoke alarm, alerting them only when they are faced with serious and imminent threats.
Small organizations can identify risk with truly useful threat detection using a combination of state-of-the art machine learning and traditional signatures to uncover urgent and imminent threats to critical assets from the cloud and on-premise networks.
Your IT staff will not waste time responding to false positives because the system notifies incident response systems and personnel only when urgent and imminent threats are identified.
Unlike typical NDR systems, Stamus Security Platform is easy-to-deploy, provides notification only when urgent and imminent threats are detected, and delivers easy to understand results with detailed supporting evidence.
And as your organization’s security team expands, the system can help your staff proactively uncover hidden threats with an integrated guided threat hunting interface and customizable detection logic.