Basic version of the out-of-the-box situational awareness platform, with basic security detection capabilities, suitable for small and medium-sized stationmaster. Contains the following functions:
7 basic threat detection SQL injection, XSS application vulnerability scan 1 alarm notifier professional edition
A fully functional situational awareness platform with comprehensive and continuous security monitoring capabilities, suitable for professional users. Contains all the features of the base version and adds the following features:
Dozens of advanced threat detection thousands of applications Vulnerability scanning Asset risk management Security Situation Daily 10 Alarm notifier Save original logs enterprise edition for 7 days
Long-term log storage meets compliance requirements and is suitable for enterprise users. All the features of the Pro edition are included with the following features:
10 visualized large screens save original logs for 180 days
Application market
With the rapid development of business and the continuous updating of software and systems, security risks and loopholes also follow. In addition, the lack of safety awareness of employees leads to the leakage of core data and core data of enterprises. How to protect in advance is a challenge. The real threat is often hidden in neglected data, looking back to the past and the present for clues.
Typical Application Scenarios
Real-time monitoring on the cloud overall safety, events of more than 40 kinds of security alarms, and calculate the safety score, daily mail receiving security Vulnerability scanning was carried out on the cloud web site periodically and do leak monitoring, and bug fixes to the ECS of intrusion events, such as the back shell, malicious software, the core data is encrypted and blackmail to carry on the back, The cause of invasion and the whole process of the invasion To retrieve of web access log, traffic investigation, statistics and analysis of various dimensions of the original log information on AK, monitoring network intrusion events, monitoring DDoS attacks, monitor the ECS presence of malicious behavior, and real-time monitoring of ports open to ECS comprehensive security system
Prevention vulnerability analysis, monitoring, assets dependencies, timing vulnerability scanning, security configuration monitoring matter blocking intrusion detection, attack recognition, anomaly detection, real-time found web layer, layer host attack, through the entire network threat intelligence and big data analytics to real-time intrusion detection Ex post facto back: It can trace and investigate security events and provide the search function of all original logs. It can customize the investigation on the impact of attack events and the defense effect of the system
Details about Ali Cloud situational Awareness service:
Ali Cloud Situational Awareness service usage tutorial
(Situational Awareness is a big data security analysis platform that alerts all assets on your cloud and uses machine learning to detect potential intrusions and highly covert attacks, trace attack history, and predict upcoming security events.)
Official website of Ali Yun University (Official website of Ali Yun University, Innovative Talent Workshop under cloud Ecology)