Cyber Streaming Effects and Analytic Languages –
Cyber SEAL
TM
Cyber SEAL™ is a suite of tools for real-time attack detection,
response, and threat emulation. Originally developed from the
ground up at MITRE for tactical environments, this suite of tools
has also been successfully applied to enterprise IT networks.
Why Cyber SEAL™?
Near Real-Time & Low SWaP: Tactical environments, including all
moving platforms in air, land, sea, or space, must be able to survive
cyber attacks during active operations. Cyber attacks can have
devastating effects. Defending against them is always challenging,
especially in a tactical environment that does not have the computing
resources found in larger facilities. Therefore, a cyber defense tool-set
is needed. It must operate with low Size, Weight and Power (SWaP)
in near real-time and be easily integrated with existing systems, which
often generate data in proprietary formats. Cyber SEAL™ uses the
same monitoring techniques, whether in a real-time event stream or in
logs collected in a file, and produces evidence of the anomaly along
with an anomaly alert.
