API/SDK

NetWitness® SDK/API is an open application programming interface that leverages the NetWitness "Know Everything / Answer Anything" network capture infrastructure and data/application framework.

The NetWitness SDK contains an application programming interface (API) that enables custom applications to leverage the NetWitness NextGen™ infrastructure. Leveraging a secure communications framework, the API enables rapid development of any conceivable application for analysis of raw network traffic. The SDK is made available to every NetWitness customer to extend, integrate and extract more value from their network data.

To encourage an open expansion of the NetWitness technology, a library of applications, rules, reports, alerts and sample code is available at the NetWitness Community. It is regularly populated to help customers expand the use and value of their NetWitness investment. This library, combined with the SDK, shows the true flexibility and value of a record that can be used multiple times for gaining deep knowledge into the network infrastructure.

• Full featured “C” API that allows access to query, search, and render local and remote data
• Supports REST
• URI-based query language for data retrieval
• Supports both Windows and Linux based development platforms
• Includes sample code for rapid prototyping
• Infinitely extend your NetWitness infrastructure to any problem set