Incident Responder (Threat Analyze) Service Requirements

You are here:
< Back

Hardware Requirements

The below is a standard hardware requirements for just the Keepnet Labs. portal server.

 

  • 2 CPU
  • 3GB to 5GB RAM
  • 20 GB Disk Space

Software Requirements

Mandatory

  • Ubuntu server 64 bit (last version)

Authentication & Access Requirements

  • An OS user with root privileges (root group)
  • For Internet access (Direct access or an internet proxy URL, username and password)
    • Outbound *.keepnetlabs.com for templates feeds and updates (TCP 80/443)
    • Outbound *.keepnetlabs.com for company specific data synchronization (TCP 80/443)
    • Full outbound access for all other integrated modules;
      • *.trapmine.com
      • *.virustotal.com
      • *.zemana.com
      • *.alienvault.com
      • *.shodan.com
  • For Intranet access
    • FW exclusion list for malicious activity against possible intranet/client targets
  • For Active Directory connection.
    • The machine doesn’t have to be attached to a domain. A user for validating users and querying their properties
  • For SMTP Server,
    • Relay option for keepnetlabs Threat Analyzer’s IP Address or hostname
    • Whitelisting for keepnetlabs Threat Analyzer’s IP Address or hostname