ExtraHop and Microsoft Team Up to Extend Coverage for Azure Workloads
Back to top
April 28, 2025
ExtraHop and Microsoft Team Up to Extend Coverage for Azure Workloads
Building a robust defense-in-depth strategy for hybrid security requires the ability to collect network packets for analysis in cloud environments. To make it easier for SOC teams to leverage that rich, packet-level context, ExtraHop is partnering with Microsoft in the public preview of Azure virtual network terminal access point (TAP).
The Value of Network Packets
Packets carry invaluable insights that can help analysts reconstruct network events, identify malicious traffic, and conduct thorough forensic investigations. They’re essential for robust network security and troubleshooting, providing the comprehensive data needed for effective threat detection, incident response, and performance analysis.
The ExtraHop RevealX network detection and response (NDR) platform transforms raw packets into structured wire data for real-time threat detection, streamlined investigation, and intelligent response. With full packet capture (PCAP), organizations have a definitive source of truth — a raw, unfiltered view of network communications that captures every detail of network traffic, including headers, payloads, and timestamps.
Integrating ExtraHop and Azure Virtual Network TAP
Azure virtual network TAP is a native cloud traffic mirroring service designed to provide out-of-band monitoring for virtual machine traffic. By seamlessly integrating the ExtraHop RevealX platform and Azure virtual network TAP, customers benefit from real-time access to packet-level data for advanced threat detection, investigation, and response.
Security teams also gain practical operational advantages through the integration, which translates to improved security and streamlined workflows.
Agentless Traffic Mirroring
ExtraHop eliminates operational friction by using Azure virtual network TAP’s agentless traffic mirroring to securely acquire packets without deploying host-based agents. This approach reduces performance overhead, minimizes attack surface risks, and ensures organizations can monitor workloads without disruption.
Cloud-Scale Threat Detection
With Azure virtual network TAP feeding packets into RevealX, ExtraHop delivers deep forensic insights that SOCs can rely on for detecting advanced threats like ransomware, lateral movement, and encrypted attacks. ExtraHop transforms raw packet data into actionable intelligence at cloud scale, empowering teams to stay ahead of adversaries.
Seamless Integration for Hybrid Visibility
ExtraHop integrates natively with Azure virtual network TAP, leveraging its SmartNIC technology to provide packet-level precision across cloud environments. This tight integration ensures customers can unify security monitoring across Azure workloads and on-premises infrastructure, simplifying operations while enhancing security posture.
If you are interested in participating in the Azure virtual network TAP public preview, reach out to your ExtraHop representative today.
Discover more
ExtraHop is on a mission to arm security teams to confront active threats and stop breaches. Our RevealX™ 360 platform, powered by cloud-scale AI, covertly decrypts and analyzes all cloud and network traffic in real time to eliminate blind spots and detect threats that other tools miss. Sophisticated machine learning models are applied to petabytes of telemetry collected continuously, helping ExtraHop customers to identify suspicious behavior and secure over 15 million IT assets, 2 million POS systems, and 50 million patient records. ExtraHop is a market share leader in network detection and response with 30 recent industry awards including Forbes AI 50, Cybercrime Ransomware 25, and SC Media Security Innovator.
Learn more at our About Us page.
Share
