Tracking Outgoing Information

Unanswered Question
Apr 2nd, 2009
User Badges:

I have an ASA 5510 and was wondering if someone could shed some light on this. If someone internally would install a producted (keylogger or something of that nature) that gathered information and then sent it to a remote location could the ASA detect this traffic and/or prevent the leak of information.

Thanks in advance

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
John Blakley Thu, 04/02/2009 - 14:53
User Badges:
  • Purple, 4500 points or more

The ASA has an IPS module that may help you with what you want. I'm not aware of any device that will log when a keylogger is installed because that type of activity, local to the workstation, would be restricted by antivirus software. Anything traversing the network, i.e. buffer overflows, DoS attacks, MITM attacks, etc, can be seen with an IPS.




This Discussion