I continue to make the case that the cost of IT Security is larger than the downside for most companies. Logically, implementing tools/products that operate lower level of “security” and modest levels of visibility would meet the cost/benefit requirements.
On that basis, I recommend this paper explaining the use of NTOP NG as a security tool. From what I can read, NTOP gives the same results as an sFlow tool through deep visibility into data stream. By looking into the data for known vulnerability patterns, you can indentify common security issues.
I think this would be suitable for small to medium sized companies which have been priced out of branded security products.
Well worth 10 minutes to read and think differently about security solutions.
Local Copy: NetworkSecurityUsingntopng.pdf
Source: Network Security Using ntopng – PDF Presentation Retrieved 1 Jun, 2017