NetCop
Overview
Netcop is a network protocol analysis, detection & prevention system capable of performing packet logging and real-time traffic analysis on IP networks. Netcop is actively developed by Tritux.
Netcop is used to detect several types of malicious behaviors that can compromise the security and trust of a computer system. This includes network attacks against vulnerable services, data driven attacks on applications, host based attacks such as privilege escalation, unauthorized logins and access to sensitive files, and malware (viruses, trojan horses, and worms).
Netcop performs real-time protocol analysis, content searching/matching, and is commonly used to actively block or passively detect a variety of attacks and probes, such as buffer overflows, protocol floods (HTTP, SMPP and any other IP protocol), stealth port scans, web application attacks, SMB probes, and OS fingerprinting attempts, amongst other features.
Netcop can be used to inspect-and-inject data into IP packets, for example, it is possible to inject advertising texts into exchanged SMS or Emails between users.
Key benefits
- A cost effective solution.
- Increase ARPU (Average Revenue Per User).
- Reduce fraud & prevent revenue loss.
- Quality of Service.
- Flexible to adapt customer requirements for new fraud detection rules.
- Rapid service development.
- Fast and easy to use.
- Scalability.
Main features
- High performance with in-memory DB usage.
- Real-time scalable TCP/IP sniffing system.
- Differentiation between Post & Pre-paid customers.
- Action-on fraud detection: barring SMS-MO, Outgoing call privilege .. etc
- Highly scalable architecture.
- High availabilities features: Active/Active or Active/Standby modes.
- System Administration Terminal.
- System Management Interfaces.
- Event Handler.
- Security.
- Firewall and Spam message control.
Applications
- SMS/SMS+ flooding detection & prevention.
- MMS/MMS+ flooding detection & prevention.
- Mobile advertising text injection into SMS, Emails or any known discussion protocol.
- Bad word detection in emails, SMS, Chat messages ...
Protocols
NetCop provides a real-time data analytics solution on top of any TCP/IP protocol, we provide standard adaptors for these protocols:
- SMPP (SMS)
- HTTP/HTTPs
- SMTP (Email)
- XMPP/Jabber (Chat)
- IRC (Chat)
- Others on demand.
Platform support
- Red Hat Enterprise Linux.
- SUSE Linux Enterprise.
- Debian GNU/Linux.
- Ubuntu Linux.
- GNU Linux.
- Unix.
- Sun.
- HP.
- Other proprietary platforms on demand.
