TDAC (Telesoft Data Analytics Capability) is a cost effective, field-proven ultra-high-rate monitoring, analytics and forensics platform. TDAC ingests and analyses millions of events per second, including network flow data, IDS alerts and system logs, enhancing data with known threat intelligence (including IP reputation, threat classification, geo-location), partitioning and pre-anaysing data for rapid sub-second query by Incident Response and Forensics teams.
Typically deployed on networks running at multiple 100Gbps,TDAC provides dashboards and query widgets for a visual picture of network performance and health, alerts to indicate anomalous behavior, a RestAPI interface for integration with other automated tools and a Kafka interface for third partystreaming analytics tools.
Take a guided tour around the TDAC GUI
TDAC scales horizontally according to the resources allocated to it and can retain data for months across Peta-Byte storage.The TDAC UI and RestAPI incorporates features to accelerate turning this huge volume of raw data into actionable intelligence, including navigation by preset groupings (such as Application, Service, BotNet, CNI, business area etc.), enrichment with threat classification data, query path tracking (as ‘forensic pathways’) and continuous query analysis, giving sub-second query time.