CLOSE

Pre-Requisites



 

1

You need Check Point Gateways.

2

Splunk Enterprise Server

(If you have not installed  Splunk yet, you can download it from Splunk store and get a free license for a month)

3

Check Point OPSEC LEA

You can download it from splunk store (RHEL/CentOS 5.x or 6.x only)

4

Check Point Analytics App by QOS at Splunk store.

 


Features




Firewall

Application Control & URL Filtering

IPS

Alerts

This app provides you the following analysis about firewall blade:
  • The list of the top 10 sources and destination of IP addresses
  • The list of top 10 services
  • The list of top interfaces
  • The list of top 10 blocked TCP/UDP ports
  • A world map showing all countries where all internal users are connecting
This app provides analysis about Application Control & URL Filtering blade on the following:
  • A list of local IP Addresses that attempts to gain access on high risk websites/ servers.
  • A world map showing the location of all high risk websites.
  • A list of safe local/ internal IP Addresses approved by the app and URL Filtering blade of Check Point.
This app provides IPS analysis on the following:
  • Count of strikes blocked by Check Point IPS (depending on the time it was made).
  • Count of strikes discovered by Check Point IPS (depending on the time it was made).
  • List of top IPS strikes.
  • List of top detected protections based on its count (according to the Check Point IPS logs).
This app provides alerts on the following:
  • Most recent event and alert raw data received by Checkpoint
  • List of IP addresses which inspected your personal network from the Internet
  • List of local IP addresses discovered undergoing a port scan


Quickly Analyze your CheckPoint Logs with Our Award Winning Product. Its Fast, Reliable & more Accurate

Our App for Splunk 6.3 is available at :
For Splunk 6.2
Click Here to Download

230+

Downloads

Average Rating

Winner of 2015
Revolution Award from


Visit the following link for Instruction Guide



Contact


+91- 80-41312419
info@qostechnology.in
ARK #48, Nakshatra Business Center, R.V. Road, Basavangudi,
Bengaluru India - 560004
Join our CEO, Ramandeep Singh, discussing the role of Machine Learning in Cyber Security at ICMLDS2017 on 14th-15th December. Organized by IEEE at Bennett University, Noida.Learn More
+
Loading...