Cyber security

Cybersecurity is a crucial concern for organizations of all sizes in the digital era. Protecting devices, networks, data, and apps is essential to doing business.

We provide security for all of your data, with security products and services to data, applications, IT, and communications networks. We are trusted by organizations globally, including utilities, financial institutions, and government agencies to be a proactive partner for security.
We can ensure your security can work behind the scenes, always looking out for you, but without ever getting in the way of your business. Take advantage of the digital economy’s opportunities, ensure your cybersecurity, and innovate confidently.

We developed the CSS Network Intrusion Prevention Solution (CSS NIPS), a real-time monitoring solution that monitors network traffic and analyzes packets to detect, warn, and prevent network attacks. The solution is deployed flexibly and quickly without affecting services and applications in the network system through the deployment plan of collecting (SPAN/monitoring) network traffic on switching devices to serve the analysis process.

Extract and analyze packets:
Deep packet inspection (DPI) technology, combined with popular protocol decoders, is used to extract packets and analyze and detect abnormalities in the network.
Detect network attacks:
Through monitoring network traffic to identify targeted attacks, advanced, disguised, hidden threats such as APT, key features include:

– Detect password-scanning attacks in the network.
– Detect signs of denial of service attacks.
– Detect signs of vulnerability scanning attacks.
– Detect signs of Web application attacks (SQL Injection, XSS,…).
– Detect IoC signs of APT malware.
– Detect attack techniques based on the MITER ATT&CK framework.
– Detect signs of scanning network information.
– Detect signs of service exploitation..

The diverse set of rules, continuously updated with power from AI:
The solution comes with a set of rules to detect many different groups of abnormal behaviors on the network layer, which are constantly updated to detect the latest signs of attacks, including groups of unusual behaviors such as Network Scan, Trojan Activities, Shellcode Detect, Web Application Attack, Suspicious Login,… NIPS also uses Artificial Intelligence (AI) and Machine Learning technology to identify attacks that use new attack methods without a recognized pattern. The solution supports an intuitive, easy-to-use interface for end users (both IT and non-IT).

Support for in-depth investigation and analysis:

The solution provides a set of tools to support administrators and experts in investigating, reviewing, investigating and in-depth analysis of network incidents, including:
– Review connections for an indication of a cyber attack.
– Review connections related to an IP address in the network.
– Support recreating connections and queries in the network in PCAP form to serve investigation and in-depth analysis.

Be able to integrate with other solutions, such as SIEM, to send logs via syslog protocol or send alerts via API.

Results achieved:
– Detect abnormalities and attacks through the network core to promptly warn and handle them.

For further information, please contact: Daniel Ng, Project Director at: dan@cybertech.com.sg