On Premises, In Public Clouds, Across Hybrid Clouds, With Service Providers

Stellar Cyber Open XDR operates wherever applications and data reside, delivering on the promise of eXtended Detection and Response (XDR)

Stellar Cyber Open XDR, as the center of a security operations platform, encompasses three components: a family of distributed sensors, agents, connectors and log forwarders to collect data from a variety of sources; a centralized data processor that processes, analyzes and stores the data with many integrated applications; and an intuitive GUI as a single pane of glass so analysts can visualize the data, access the applications and operate the platform.
See options below:

  • Network Sensors Network Sensors: Collect rich metadata out of 4,000+ network applications with a powerful and customizable Deep Packet Inspection (DPI) Engine. Physical network sensors can be used for south/north traffic from physical switches and virtual network sensors can be used in virtual environment for east/west traffic from virtual switches.
  • Security SensorsSecurity Sensors: Detect network intrusion and malware downloads from network traffic. A security sensor can be deployed in the same device as a network sensor or a different device or even different location from network sensors.
  • Server SensorsAgent Sensors:Collect and correlate data on Linux and Windows servers including network traffic, commands, processes, file and application information. These sensors operate on Windows 2003 and up, various Linux Distros including Ubuntu, CoreOS, Debian and Red Hat
  • Container SensorsContainer Sensors: Collect data from, and operate inside Docker environments to monitor communications among Containers. Container Sensors themselves are containers.
  • Deception SensorsDeception Sensors: Act as honeypots within your environment and operate on VMware, KVM, Hyper-V and VirtualBox. Like Linux agent sensor, it collects various data including network traffic, commands, processes, file and application information.
  • ConnectorsConnectors: Ensure visibility into Software-as-a-Service applications or service provider environments including: AWS Cloudtrail, Office365, G-Suite, OKTA, vulnerability scanners, Active Directory, EDR, SNMP, etc
  • Log ForwarderLog Forwarder: Collect, aggregate, parse and normalize logs from hundreds of security applications. It supports various format including standard log format, CEF format, etc.

Data Processor nodes are deployed and can be clustered together to create an infinitely scalable big data platform for data storage and analytics–ensuring extended detection and response (XDR) for all organizations.

Key Components

Stellar Cyber Open XDR, as the center of a security operations platform, encompasses three components: a family of distributed sensors, agents, connectors and log forwarders to collect data from a variety of sources; a centralized data processor that processes, analyzes and stores the data with many integrated applications; and an intuitive GUI as a single pane of glass so analysts can visualize the data, access the applications and operate the platform.

Provide Comprehensive Security Throughout Your Customers’ Infrastructure

Distributed Sensors and Agents

Stellar Cyber has the broadest family of distributed sensors, agents, connectors and log forwarders in the industry. They can be deployed in any environment, from physical, to virtual to the public cloud. They can be deployed  as standalone sensors attaching to physical or virtual switches, embedded as agents on servers or endpoints, or installed as containers to cover container-based applications. Please refer to our sensors and agents web page for details.

Stellar Cyber Solves the Data Deluge Problem

Centralized Data Processor

Open XDR’s centralized data processor processes, analyzes and stores data in a big data lake. It performs advanced detection, correlation and automated response with 20+ tightly integrated security applications. It is based on cloud native microservice architecture built with containers. This architecture provides scalability for large data volumes, high availability and deployment flexibility of the same software—from on premises to cloud and managed environments, ensuring the best match to business needs.
It can be deployed on physical or virtual machines or in public clouds such as AWS, Azure or Google. It can also be purchased as a turnkey solution pre-installed on dedicated hardware appliances.

Intuitive GUI

Open XDR has an intuitive GUI as a single pane of glass to enable analysts to visualize the data, access the applications and operate the platform. Among its many functionalities, the GUI enables threat visualization across the cyber kill chain, threat investigation, guided and manual threat hunting and playbook construction for automatic responses.
The GUI is a web-based application which can be accessed from anywhere on any computer via a browser.

Sensors and Appliances

Open XDR Appliances Datasheet

Turn-key appliances for SOC teams and security analysts.
Download Datasheet

Sensors and Agents
Datasheet

Stellar Cyber’s Sensors & Agents – See the Whole Picture with Pervasive Visibility
Download Datasheet