Supporting network security management is one of the main goals of our technologies. We have created an open-source framework for real-time analysis of the monitored flow data (NEMEA) and developed a number of methods for detection of various types of malicious network traffic. Many of these detection methods are based on modern machine learning techniques. We also undertake research and development in the area of Cyber Situational Awareness, focused on gathering data about sources of malicious activities (NERD) and on autodiscovery of devices in an internal network. A special attention is given to DDoS protection. We have developed a hardware-accelerated box for mitigation of DDoS attacks capable of processing traffic at 100 Gbps.