Informational

Informational detections are a category within Vectra Fusion's Vectra Detection Models (NDMs) that provide valuable insights about unusual but not necessarily malicious network behavior. These detections are designed to inform and alert network administrators about irregularities that could impact network functionality or indicate potential vulnerabilities. For example, the 6in4tunnel detection flags IPv6 traffic tunneled over IPv4, which, while not inherently harmful, could be exploited for covert communication. The alltcpflags detection alerts when all TCP flags are set, an unusual condition often associated with network scanning or evasion techniques. While these detections may not always signify an imminent attack, they serve as critical informational tools for maintaining network hygiene and preemptively addressing potential security risks.