A moving target defense (MTD) has long been believed to be a potentially game changing approach to cybersecurity. Traditional approaches to network defense that do not use deception put forth a static perimeter configuration that can be understood and attacked after repeated reconnaissance scans from threats. While moving the target is generally impractical, PacketViper can create the appearance of movement in front of the network through a dynamic set of decoys that vary based on a variety of factors, effectively reducing attack vectors.
PacketViper improves the overall cybersecurity posture and reduces security related costs by continually deceiving attackers, gathering intelligence on threats and applying that intelligence to strengthen defense in a consistent, automated fashion.
Extending deception to the perimeter is a powerful way to combat attackers head-on when they are just getting started sizing up your network. Doing so eliminates attacker anonymity and constrains their ability to operate. Inserting deception at the perimeter also poisons upstream vulnerability repositories and allows you to deplete botnets very efficiently.
Unwanted, uninvited traffic that clutters the firewall and gets through to the network creates a costly burden for security operations teams and increases the chances of missing important alerts and getting breached. Inserting believable deception at the network perimeter to being deceiving threats as they perform initial recon and NMAP scans reduces overall IP traffic on the network and greatly improves security operations while reducing costs.
Reducing traffic volume with PacketViper brings the following benefits to firewalls, IDS/IPS and SIEM: