Topwalk Intrusion Detection System (Topwalk-IDS) integrates multiple functions including security audit, monitoring, attack identification, virus detection, and Trojan recognition. It can real-time monitor internal threats, external attacks, and misoperations, serving as a key means of in-depth network system protection and an irreplaceable part of the network security defense system.
-
Comprehensive Asset Management- Supports managing IPv4/IPv6 assets through manual addition, scan discovery, and traffic self-learning, with import and export functions for asset information;
- Supports retrieving asset information such as IP address, operating system, and online status via EDR, with automatic synchronization to the system.
-
Multi-Dimensional Collaborative Linkage- Supports cloud threat intelligence linkage to inspect malicious IPs, domain names, and URLs, and push hot security events;
- Supports EDR terminal protection linkage for terminal user access control and host isolation based on terminal health status;)
- Supports sandbox linkage for analyzing suspicious files and host behaviors with collaborative response.
-
Powerful Virus Protection- Performs virus detection for scenarios such as WEB sites, file transfers, and emails, with a virus database of millions of entries and regular update services;)
- Supports detection of 20 file formats and compressed files, with a trusted file whitelist function.
-
Precise Intrusion Detection- Covers 12 categories and over 10,000 attack signatures including vulnerability scanning, directory traversal, and security bypass, supporting manual and automatic upgrades;
- Supports custom IPS rules with rich configurable fields such as protocol fields, operation types, and payload content.
Based on intrusion detection and protocol analysis technologies, it can identify various attacks such as worms, Trojans, spyware, adware, buffer overflows, scanning, illegal connections, SQL injection, and XSS. It provides targeted attack detection for multiple protocols and applications including HTTP, FTP, SMTP, etc.
Adopts an advanced multi-core processing architecture, with original asynchronous packet processing technology between multi-core CPUs and content search engines, significantly improving signature matching performance.
Overcomes the technical limitations of traditional IDS (poor real-time performance of file-based detection and low accuracy of single-packet-based detection). Integrates ACL efficient traffic distribution, Session state tracking, cross-packet detection, correlation analysis, and "zero" cache technologies to significantly improve packet detection accuracy and processing performance.
Supports querying and customizing reports by factors such as time, IP, application, event category, and attack type, with export function; provides multiple statistical visualization methods including interface IN/OUT traffic graphs, Top10 active internal/external IPs, and Top10 application distribution charts.
Allows arbitrary designation of physical audit interfaces to mirror attack traffic to third-party devices, supporting audit and forensics of intrusion behaviors.
Supports one-click asset discovery to quickly identify and manage digital assets through traffic learning, scan detection, terminal linkage, and manual entry; conducts unified security sorting based on attributes such as department, business system, and importance level.
-
01
Topwalk-IDS meets diverse security detection needs in different environments by comprehensively monitoring core nodes, aggregation nodes, access nodes, and branch offices of user networks. Deployed in non-intrusive bypass mode, it can receive multiple mirrored traffic streams to simultaneously detect multiple networks and subnets, reducing customer investment costs.
Contact number: +8613810035865
Enterprise Email: liuyl@topwalk.com
Address: Building 3, Courtyard 6, Jianfeng Road (South Extension), Haidian District, Beijing
All Rights Reserved by TRS Topwalk Information Technology Co., Ltd.