
Network Security and Forensics
Leave No Attack Unseen


“FireEye has cemented its reputation as a provider of high-quality security solutions and has won business from some of the world’s largest enterprise organizations and government agencies. Despite continued demand for FireEye sandbox solutions, the company has continued to identify opportunities for growth, including products and services that support customer security detection, investigation, and response capabilities.”
– Frost & Sullivan
Detect threats others miss
- Apply state of the art, signatureless detection and protection against the most advanced threats, including zero-days.
- Combine heuristics, code analysis, statistical analysis, emulation, and machine learning in one advanced sandboxing solution.
- Enhance detection efficacy with frontline intelligence derived on the frontlines of the world’s biggest breaches.
Adapt to your needs
- Choose from a complete set of deployment scenarios, including in-line and out of band, on-premise, hybrid, public and private cloud, and virtual offerings.
- Consolidate network security technology stack with a built-in Intrusion Prevention System (IPS) and Dynamic Threat Intelligence.
- Augment with FireEye Endpoint and Email Security under FireEye Helix platform for end-to-end advanced threat protection from a single vendor.
Network + Email
1 + 1 = 3 with Network and Email Security. See the bigger picture, detect blended attacks, and respond more effectively.
Network + Endpoint
Stop web shell attacks, reduce the time to detect and respond from weeks down to minutes.
FireEye + iboss
iboss + FireEye Cloud Network Security delivers advanced threat protection regardless of device or end user location.
FireEye Detection On Demand
A threat detection service that is delivered as an API for integration into the SOC workflow, SIEM analytics, data repositories, or customer web applications. FireEye Detection On Demand delivers flexible file and content analysis capabilities to identify malicious behavior wherever the enterprise needs it.
TESTIMONIAL
“It's to the point now that I'm actually afraid of removing FireEye Network Security because I see everything that it catches. It finds things on local computers that the anti-virus program misses. It's pretty amazing in what it catches.”
- Nathan Sinclair, Cyber Security Defense Center Manager, City & County of San Francisco
FireEye SmartVision
FireEye SmartVision is a network traffic analysis (NTA) solution that detects suspicious lateral traffic within an enterprise network. It combines an advanced correlation and analytics engine, a machine learning module, and 120+ intrusion detection rules that identify weak indicators of compromise and detect data exfiltration attempts.
- Decrease time to detect post-breach activities and reduces attacker dwell time
- Provide flexibility to scale through the entire network
- Improve network forensics and incident response
FireEye Network Forensics
FireEye Network Forensics pairs the industry's fastest lossless network data capture and retrieval solution with centralized analysis and visualization. A single workbench accelerates the network forensics process, simplifies investigations and reduces risk with expanded visibility into lateral spread.
- Pinpoint the data you need fast enough to make a difference
- Achieve continuous, lossless packet capture at up to 20 Gbps
- Search for and retrieve packets in seconds with patent-pending indexing architecture

Protect Network Infrastructure
Is my Internet and internal network secure? Control your network and data center with confidence.
Detection On Demand
Threat detection that delivers flexible file and content scanning for your cloud and web applications.
SmartVision
Advanced detection engine targeting lateral threats within an enterprise network.
File Protect
Detect and block malicious content that threatens file content security.

Respond to Incidents
FireEye Network Forensics: Rapidly capture and investigate full-packet and contextual data on the network.
Malware Analysis
Safely execute and analyze malware in a secure environment to strengthen threat intelligence.
Network Forensics
The industry's fastest network data capture and retrieval solution paired with centralized analysis and visualization.
Network Security and Forensics features
Defend your network with the most reliable cyber-attack protection available.

Signature-less threat detection (MVX service)
Detects multi-flow, multi-stage, zero-day, polymorphic, ransomware and other advanced attacks.

Real-time and retroactive detection
Detects known and unknown threats in real time while also enabling back-in-time detection of threats.

Multi-vector correlation
Automates validation and blocking of attacks across multiple vectors.

Signature-based IPS detection
Automates and accelerates triaging of traditionally noisy alerts to eliminate overhead.

Riskware detection
Categorizes critical and non-critical malware to surface the biggest threats and prioritize response resources.

Real-time inline blocking
Immediately stops attacks to improve efficiency and minimize the impact of security incidents.
Related resources
Solution brief
Network Security
Solution brief
High Performance Network Series Solution
eBook
Network Security, A Buyer's Guide
White Paper
The Business Case for an Advanced Security Solution
Network Deployment & Integration
Rapid and effective integration into your security environment
Video
Flexible Network Security
Network Security Blog Posts
Ready to get started?
Ask about FireEye solutions, implementation or anything else. Our security experts are standing by, ready to answer your questions.