Cisco Stealthwatch is a collector and aggregator of network telemetry data that performs network security analysis and monitoring to automatically detect threats.
It is able to detect threats that successfully infiltrate the network and also threats that have originated from inside the network.
Stealthwatch can quickly and with high confidence detect threats such as command and control attacks, ransomware, illicit cryptomining, unknown malware, and inside threats.
The StealthWatch solution is agentless but can look into many parts of the network including the cloud. It can detect malware within encryption traffic and ensure policy compliance without any decryption.
StealthWatch has two offerings, StealthWatch Enterprise, and StealthWatch Cloud.