Detection

Suggest Edits

The Detection section in the Netography Fusion Platform portal is designed to provide comprehensive network security monitoring and management capabilities for enterprise Security Operations Center (SOC) and cloud operations teams.

  • Detection Categories: Detection categories are similar to flow tags. They are used to group or "categorize" detection models, after which rules - based on categories - can be crafted.
  • Network Models: Network Detection Models are always-running search conditions applied to incoming flow. Events are then generated when thresholds are exceeded.
  • Context Models: Context Creation Models are always-running search conditions applied to incoming flow. Labels are then generated when thresholds are exceeded.

For more information and a complete list of Network Detection Models, refer to the Detection Model Library.

Updated about 1 month ago