1.3. Presentation of the GCap

The GCap is an IDS type detection probe deployed at each site.

It enables:

• Capturing and analyzing network traffic from TAPs

• Reconstructing the files present in the analyzed flow (according to type and size parameters)

• Carrying out an initial analysis

• Generating alerts and / or metadata type events

• Transmitting files / codes / events to the GCenter

For more information, please refer to the GCAP documentation.

---