Rsignia’s CyWarfius® product line is a family of secure, locked-down, passive or inline monitoring appliances powered by the Endace DAG card technology.  The CyWarfius® products acquire, record, analyze, filter, modify, send, and store data while delivering real-time flow statistics and full packet payloads to independent monitoring applications.

CyWarfius® appliances have been deployed in a variety of cyber warfare applications in both civilian and DOD agencies.  A DOJ agency is leveraging the capabilities of CyWarfius® for lawful intercept while the Air Force is using Cywarfius® for an application specific IDS using Snort. 

CyWarfius® has also been used in commercial environments.  A large system integrator needed to analyze packets on a SONET network.  CyWarfius® is currently capturing these packets and sending them to the customer's network IDS. 

CyWarfius® products provide needed defensive and offensive capabilities for the cyber warfighter.

CyWarfius® Joint Forces Sensor: This dual quad-core processing sensor provides powerful and flexible data manipulation capabilities.  Once each packet is time stamped, it then can be replicated or load balanced.  Data replication allows multiple applications to analyze the same data stream at the same time.  Time stamping insures accurate replay of the data as well as assisting with forensic analysis.  For CPU intensive applications such as IDS, the data stream can be load balanced across multiple CPU cores to increase performance.

Multiple application support makes the CyWarfius® Joint Forces Sensor very popular with Green IT initiatives.  Not only are the number of systems reduced, but the flexibility of the design means new applications can be deployed as requirements change without changing the hardware.

Key Features    

• Full packet capture at line rate to 40Gb with no dropped packets
• No MAC address – Receive only, “stealth mode”
• Each packet is hardened time-stamped.
• Data is load balance across multiple CPU cores.
• Simoultaneous applications support
  • Example - Run Snort balanced across  4 CPUs
  • TCPDump and YAF can each run on their own CPU
  • Leaving 2 CPU's for management and future growth
• Reduced TCO
  • Eliminate stovepipe deployments
  • Reduce power, cooling and maintenance requirements
• Cost effective, COTS based design
• Scalable chassis configurations 

CyWarfius® CyberScope:  Combining the key features of the Joint Forces Sensor with an easy to use GUI, CyberScope provides custom offensive and defensive capabilities for the cyber warfighter. 

Key Features:

• Flexible filtering options
• PoS to Ethernet Conversion
  • Use libcap applications on a Sonet PoS link
• Malicious Activity Identification 
  • Email Correlation
  • ID IP Address
  • SSL Inspection
  • Session Reassembly & Replay
  • Analysis
• Non-Kinetic Counter Measures
  • Session Termination
  • Modify Destination or Source Address
  • Modify Data/Content
• Offensive options
  • E-mail search and modify
  • Rewrite Packet Length Fix Checksums
  • String Search Replace
  • Search and Replace of Domain Names
  • Filter on Radius User Login
  • Time Stamped Evidence and Warrants