ExtraHop Introduces Explore Search Appliance for Turnkey Big Data Analytics

Fifth Generation Platform Combines the Power of Real-Time Analysis with Search to Deliver Faster, Simpler, More Cost-Efficient Insight for Business and IT

SEATTLE, WA - November 3, 2015 – ExtraHop, the global leader in real-time wire data analytics for IT intelligence and business operations, today announced the fifth generation of its platform. The company's latest innovation positions ExtraHop as a pioneer in real-time stream analytics for all data-in-motion with market-leading dynamic discovery and universal observation capabilities. These features, when paired with the new ExtraHop Explore appliance, deliver sophisticated historical search and multi-dimensional analysis of all wire data. Extended Open Data Stream capabilities include support for Kafka and REST, delivering correlation and contextualization to extract value from a wider array of datasets.

In his October 2015 report, "Causal Analysis Makes Availability and Performance Data Actionable," Gartner Research VP Will Cappelli wrote: "Recognition that more data does not equate to availability and performance process improvement is cascading across global enterprises. As a result, users have begun to insist that any ITOA solution should focus not only on the ingestion, storage and access to data, but also on tools for making that data meaningful and actionable."


Meet the next generation ExtraHop platform, and the new ExtraHop Explore appliance. Finally, big data for everyone -- without the big headache.

Wire data encompasses all network, client, application, infrastructure, and business data – all data-in-motion. ExtraHop 5.0 delivers turnkey stream analytics for wire data, enabling organizations to automatically discover devices, systems, and their relationships; observe and measure their behavior; and explore this data to unlock powerful, cross-domain insights that extend across the business.

  • Operations teams are empowered to accelerate Internet of Things (IoT) initiatives with agentless, incremental monitoring of dynamic environments and connected devices.
  • Network and IT security teams can now rapidly correlate all north/south, and east/west traffic, whether in the data center or the cloud. This visibility enables teams to drill down to easily identify anomalous and disruptive behavior from any device or user, speeding insight into how that behavior is impacting the performance, availability, and security of the infrastructure, dramatically improving mean time to resolution and ensuring persistent visibility.
  • Line of Business stakeholders can access granular insight into individual user experiences, enabling them to better track, monitor, and improve that experience to drive revenue and improve brand perception.

"The incredible rate of technology adoption in the enterprise is ushering in a new era, transforming IT from a support center to a force multiplier for business," said Jesse Rothstein, CEO, ExtraHop. "The fifth generation of the ExtraHop platform is designed to empower this transformation, enabling for the first time truly data-driven operations. Our platform allows organizations to discover, explore, and take command of their network, client, application, and business data in a single platform, delivering unprecedented insights that drive collaboration, understanding, and value."

The fifth generation of the ExtraHop platform offers robust new multi-dimensional search and analytics features:

  • The ExtraHop Explore appliance empowers IT and business stakeholders to query, investigate, and correlate standard or custom-defined historical metrics. When coupled with the real-time, full-stream analytics of the ExtraHop Discover Appliance, users have a comprehensive, dynamic, and multi-dimensional view into the most voluminous and accurate source of IT and business data.
  • Open Data Stream for Kafka extends the power of the company's first-to-market open architecture to support the correlation of multiple data sets and streamlines the distribution of those data sets to multiple destinations.
  • Dynamic Discovery allows for the automatic discovery of any device in the environment (including IoT connected devices), understands device dependencies, and tracks activity without instrumentation. L2 tunneling enables monitoring and analysis of virtual-machine-to-virtual-machine traffic, including virtual L2 segments such as SDN and private cloud. Expanded protocol support for DHCP, Telnet, Kerberos, and MSMQ, provides deeper insight across the environment.
  • Universal Observation delivers continuous, comprehensive observation of the IT environment from the highest level to granular, second-by-second detail to help IT identify anomalous and disruptive behavior from any device or user in real time.
  • A REST API leverages the ExtraHop platform's comprehensive understanding of all user, application, network, and business activity for smarter orchestration and automation. For the first time in the industry, users can programmatically use, control, and administrate any physical or virtual appliance through any programming language.
  • News user interface and user experience in version 5.0 are designed to make the richest data set in IT available to all users by simplifying and accelerating the time to exploration and discovery. Key new features include a visual query language, making search and data pivots simple and accessible to all users; dynamic tables for rapidly building comparisons of any transaction attribute; and selective dashboard sharing including the ability to handpick eligible users. New global navigation dynamically guides users through metrics, pivots quickly between options, and easily navigates back through history. A "recent pages" option provides a bookmark-like history for easy look-back navigation.

While competitive offerings are priced based on indexing or data ingestion rates, preventing organizations from acquiring and storing data, the new Explore Appliance is priced on a per-node basis with no data restrictions and as much look back as the customer chooses to provision. The virtual appliance starts at a list price of $10,000 per node and can index and store over 1 billion messages per day.

To experience the power of the ExtraHop platform for yourself, explore the ExtraHop interactive online demo.

What our customers are saying:

"By adding historical perspective to the real-time visibility ExtraHop already delivers, the Explore appliance pretty much removes any limit on how accurate we can be in understanding our infrastructure," said John Vaux, IT Infrastructure Architect at Phoenix Children's Hospital. "For our team, that means more rapid, precise troubleshooting. It means the ability to hold our vendors accountable to their SLAs. It means better communication with business stakeholders. It is going to be a game-changer, especially for the network team."

"ExtraHop has quickly become my go-to solution to really understand what's happening in the IT environment," said Justin Long, Senior IT Manager at McKee Foods. "By exposing the relationships and interconnections between our systems, the new ExtraHop Explore appliance is going to help us understand our infrastructure even better, and give us new insight into how performance impacts reverberate across tiers. Frankly, it's going to help us answer questions that we don't even know to ask yet."

"With new capabilities in 5.0, like enhanced HL7 analytics, ExtraHop is not just about IT troubleshooting anymore," said Wes Wright, CTO at Sutter Health. "Once we get 5.0 with Explore in place, we can perform real-time data analytics to track – down to the doctor and patient level – details like the number and type of prescriptions written, alert on potential drug interactions, and discover and monitor a host of medical devices into which we've previously had extremely limited visibility. ExtraHop now has the potential to become a platform for not only IT support but also for patient care and safety."

"The fifth generation of the ExtraHop platform is a huge leap forward for ExtraHop, especially around security," said Todd Williams, Service Level Engineer at MEDHOST. "With the Explore appliance, we can now look back at everything that happened in an individual transaction – what URIs were called, what was in the HTTP responses and headers. This ability to easily drill down to the transaction level gives us powerful understanding of what's happening in our environment beyond what tools based on packet capture, network data or logs can do."

For use cases and customer stories, see ExtraHop in Action.

What analysts are saying:

"Cloud, virtualization, and software-defined everything have upended the traditional enterprise playbook," said Christian Renaud, Senior Analyst at 451 Research. "The next frontier of business operations is technology-driven, complex, dynamic, and lightning fast. Managing it is going to require a fundamentally different approach. ExtraHop is at the forefront of this sea-change, tapping a rich source of data and applying sophisticated analytics capabilities that not only put IT teams back in command of the data center but give enterprises tangible insights that drive business value."

What our technology partners are saying:

"Adoption of software-defined data centers and software-driven cloud networking are on the cusp of widespread implementation," said Ed Chapman, Vice President of Business Development and Alliances at Arista Networks. "Through our partnership with ExtraHop, Arista EOS customers can realize the next frontier of network-wide, cloud-based visibility, orchestration, and automation to seamlessly manage the dynamism and complexity of these environments."

"Mobile productivity is a cornerstone of a productive workforce," said Siddharth Rabindran, Director, Citrix Ready at Citrix. "For Citrix customers, the ExtraHop platform is an ideal complement to our Enterprise Mobility Management solutions. With real-time stream analytics and the new multi-dimensional data analysis introduced in ExtraHop 5.0, our customers have the cross-tier visibility they need to ensure flexibility, security, and a seamless user experience for their mobile employees."

"Leading-edge enterprise customers are standardizing upon Kafka as the message bus for all of their enterprise management data," said Bernd Harzog, CEO of OpsDataStore. "By explicitly supporting Kafka as a destination for their unique wire data, ExtraHop is again demonstrating leadership, innovation, and openness in the management software space."

What our channel partners are saying:

"MTI works with some of Europe's most sophisticated enterprises to design and implement next-generation IT infrastructures," said Alan Ryan, Sales Director at MTI. "With the fifth generation ExtraHop platform, we can now provide those customers with a previously unavailable level of visibility across all tiers of their infrastructures. The ability to use ExtraHop to drill down to the device- and user-level also gives us an opportunity to expand into new markets and use cases, from security to end-user monitoring."

About ExtraHop

Cyberattackers have the advantage. ExtraHop is on a mission to help you take it back with security that can't be undermined, outsmarted, or compromised. Our dynamic cyber defense platform, Reveal(x) 360, helps organizations detect and respond to advanced threats—before they compromise your business. We apply cloud-scale AI to petabytes of traffic per day, performing line-rate decryption and behavioral analysis across all infrastructure, workloads, and data-in-flight. With complete visibility from ExtraHop, enterprises can detect malicious behavior, hunt advanced threats, and forensically investigate any incident with confidence. ExtraHop has been recognized as a market leader in network detection and response by IDC, Gartner, Forbes, SC Media, and numerous others.

When you don't have to choose between protecting your business and moving it forward, that's security uncompromised. Learn more at www.extrahop.com.

© 2022 ExtraHop Networks, Inc., Reveal(x), Reveal(x) 360, Reveal(x) Enterprise, and ExtraHop are registered trademarks or marks of ExtraHop Networks, Inc.

Press Contact

Ashley Stewart

ExtraHop Networks