n.Scope NDR v2.0 - EN
  • πŸ‘‹Welcome
  • Product Guides
    • πŸ“ŽExplore your Network
    • 🚨Using Alerts
  • Deployment
    • πŸ› οΈDeployment Guide
    • πŸ—ΊοΈn.Scope Deployment Planning
    • πŸ“‘Installing Nanocorp n.Scope
      • πŸ‘“Deploy n.Scope
      • πŸͺDeploy n.Probes, n.Rewind, n.Fusion
  • Ressources
    • πŸ”¦Alerts
      • Command & Control
        • CNC01 - Oversized UDP DNS
        • CNC02 - Protocols Ports Missmatch
        • CNC03 - BETA - Threat Intelligence Match
      • Denial of Service
        • DOS01 - DHCP Starvation
        • DOS02 - AI Smart Alert - Distributed Denial of Service
        • DOS03 - Excessive ICMP Rate
      • Exfiltration
        • EXF01 - Deprecated TLS
      • Initial Access
        • IAC01 - Suspicious SSH Admin
        • IAC02 - Unauthorized Application
        • IAC03 - Malicious TLS Signatures
      • Reconnaissance
        • REC01 - Suspicious Port Scan
        • REC02 - BETA - AI Smart Alert - Suspicious Port Sweep
      • Security Policies
        • NPC01 - Unwanted Protocol
        • NPC02 - Subnet Whitelist
        • NPC03 - Trusted Protocol
        • NPC04 - Insecure Email Protocol
        • NPC05 - Device Whitelist
    • πŸ”ŒIntegrations
      • 🚦Alerting
        • Discord
        • Slack
      • πŸ›°οΈCyber Threat Intelligence
      • πŸ”‘Single-Sign-On
        • πŸͺŸAzure AD SSO
    • πŸ€–Network Protocols
Powered by GitBook
On this page
  • 1. Pre-Deployment Planning
  • 1.1 Understand Network Architecture
  • 1.2 Define Security Objectives
  • 2. Technical Pre-Requisites
  • 2.1 Hardware/Software Requirements
  • 2.2 Integrations
  • 3. Proceed with Deployment
  • 3.1 Retrieving install archive
  • 3.2 Installation
  • 4. Getting Support
  1. Deployment

n.Scope Deployment Planning

Deploying the Nanocorp n.Scope Network Detection and Response (NDR) solution involves several critical planning steps to ensure a smooth integration into your network infrastructure and operational workflows. This section outlines the essential stages for deployment, providing a high-level roadmap from initial assessment to the final launch.

1. Pre-Deployment Planning

1.1 Understand Network Architecture

  • Assess Current Infrastructure: Review and document the existing network topology, including all subnets, remote locations, and cloud services. Identify how many probes will be required to cover the infrastructure.

  • Identify Critical Assets: List critical servers, endpoints, end-user networks, and services the solution must observe. Critical assets can be highlighted in the rules definition

1.2 Define Security Objectives

  • Determine Detection Goals: Define what threats, anomalies, or incidents the NDR must detect.

  • Establish Response Protocols: Outline how the system should respond to detected threats and the procedure for incident response.

    • Forward alerts: identify the SIEM or CIR tool the alerts should be sent t

    • Automated Packet Capture for Forensic: define in what case (severity) should a Packet Capture automatically be recorded with an alert

2. Technical Pre-Requisites

2.1 Hardware/Software Requirements

  • Hardware Specifications: Identify the necessary hardware requirements based on network size and traffic volume.

  • Compatible Platforms: Ensure that the NDR system is compatible with your current network devices and operating systems.

Check our latest Software and Hardware Datasheets for resource allocation details

2.2 Integrations

  • Existing Security Stack: n.Scope NDR integrates seamlessy with most SIEMs, CTI provider and other security tools. Check out our integration list for more details.

  • Single Sign On: n.Scope NDR is compatible with Azure AD SSO. Check the deployment instructions and prerequisites.

2.3 Security Infrastructure Integration

  • Traffic Flow Analysis: Determine where to place the NDR sensors to capture relevant traffic.

  • Network Configuration Changes: Plan for any changes needed to network configuration to support the NDR.

3. Proceed with Deployment

3.1 Retrieving install archive

  • Your Customer Success contact at Nano Corp will provide you with credentials to our delivery platform so you can retrieve the latest version of the product.

  • You can reach back to us if those credentials are lost at support@nanocorp.fr or on our Slack Support Channel

3.2 Installation

4. Getting Support

  • Our Team will introduce you to your main point of contact: your Solution Engineer, who will help you select the best deployment option and support you through installing our product. In case of an emergency, please feel free to drop us an email.

  • We share Slack channels with our customers. Ask your Solution Engineer for one if you'd like.

Last updated 1 year ago

πŸ—ΊοΈ
πŸ“‘Installing Nanocorp n.Scope