“The Department of Homeland Security (DHS) Information Technology Acquisition Center (ITAC), on behalf of the Office of Chief Information Officer (OCIO) Enterprise Security Operations Center (ESOC) is requesting information about next-gen best of breed Full Packet Capture (FPC) solutions. DHS ESOC considers Full Packet Capture (FPC) a cornerstone of the cyber security visibility stack enabling analysts to perform investigation analysis while also satisfying DHS compliance requirements.
The ESOC describes FPC as a platform providing a minimum of the following capabilities:
- Rapid capture, indexing, search, carving and exporting
- PCAP Threat Hunting tools – malware analysis, network exploits, exfiltration events
- Remote Access (CLI, Web, etc.)
- Reporting and Analytics
- Platform Logging
- Well-defined APIs that expose various platform features and data”