Temporal Traffic Analysis

Temporal Traffic Analysis in Astral focuses on understanding how network activity evolves over time. This capability enables security teams to analyze trends, spikes, and behavioral changes by observing traffic metrics across defined time ranges.

Astral provides visibility into the most active source and destination hosts over time, allowing analysts to identify systems that generate or receive unusually high volumes of traffic. This analysis helps uncover abnormal behavior, misconfigurations, or compromised assets that may not be evident from isolated events.

In addition, Astral tracks allowed and blocked connections as reported by perimeter and network defense controls. By analyzing these events over time, security teams can identify periods of increased attack activity, validate the effectiveness of security controls, and correlate traffic behavior with known incidents or environmental changes.

Temporal analysis supports investigations by providing historical context and enabling analysts to reconstruct activity timelines, validate hypotheses, and understand how threats evolve within the network.