From Wikipedia, the free encyclopedia
Jump to navigation Jump to search
NetWitness Corporation
IndustryNetwork Security
FateAcquired by EMC Corporation
PredecessorManTech International
SuccessorEMC Corporation
HeadquartersReston, Virginia, United States
Area served
Key people

NetWitness Corporation was a Reston, Virginia-based network security company that provides real-time network forensics and automated threat analysis solutions. Its flagship product was NetWitness NextGen. In 2011, NetWitness was acquired by EMC Corporation.[1]


In the mid-1990s the NetWitness technology was established by CTX Corporation, a Washington D.C. based system integrator. The technology, initially chartered as a US Government research project, was created to help analysts better understand large volumes of captured network data for various types of investigations. CTX Corporation was subsequently acquired by ManTech International Corporation (NASDAQMANT) in December 2002.[2] At Mantech, the technology was further developed to aid Federal Law Enforcement in criminal investigations and support professional service engagements for the Federal Government and commercial organizations.

In November 2006, NetWitness Corporation was spun out of Mantech, by Nick Lantuh, who was brought in to run the NetWitness Product Group and execute the spin out. As an independent company, NetWitness focused on bringing its network analysis technology to the worldwide market.[3] Since the spin out, NetWitness focused on products to support deep, real-time network situational awareness and agile network response.

In February 2010, NetWitness announced the discovery of a major ZeuS botnet infestation impacting roughly 2,400 companies across the globe. The company dubbed this botnet the “Kneber ZeuS botnet” after the criminal gang involved. This news went viral as it shed light on the continued vulnerabilities of the world’s corporate Information Security practices and provided a deep dive understanding of the inner-workings of a botnet.[4][5][6][7]

NetWitness Visualize, announced in July 2010, provided a revolutionary way to visualize network traffic.[8]

In August 2010, NetWitness was named the 21st fastest growing private company in the United States in the annual Inc 500 report. With 7,745.8 percent three year growth, the company was also ranked as the fastest growing privately held enterprise security product company and the fastest growing company in the Washington, D.C. area.[9]

On April 1, 2011, NetWitness was acquired by EMC Corporation for an undisclosed amount. Former NetWitness products were integrated into EMC's security division, RSA Security.[10]

Netwitness’ CEO, Amit Yoran, was formerly Director of the Department of Homeland Security’s National Cyber Security division. NetWitness also employed Shawn Carpenter, a notable security analyst that discovered operation Titan Rain in 2005.

See also[edit]


  1. ^ "EMC acquires NetWitness, combines with RSA". April 4, 2011.
  2. ^ "Mantech acquires CTX Corporation". December 6, 2002.
  3. ^ "NetWitness Spins out of Mantech". November 7, 2006.
  4. ^ Siobhan Gorman (February 18, 2010). "Broad New Hacking Attack Detected". Wall Street Journal.
  5. ^ Dan Goodin (February 18, 2010). "Almost 2,500 firms breached in ongoing hack attack". The Register.
  6. ^ John Markoff (February 18, 2010). "Malicious Software Infects Computers". The New York Times.
  7. ^ Jeff Bliss (February 18, 2010). "Global Hackers Breached 2,400 Companies, Security Firm Says". Business Week.
  8. ^ Paul F. Roberts (July 21, 2010). "Network forensics gets a 'Minority Report'-style UI". InfoWorld.
  9. ^ "NetWitness Inc 500 Profile". Inc Magazine. August 21, 2010.
  10. ^ "EMC acquires NetWitness, combines with RSA". April 4, 2011.

External links[edit]