This document discusses how using NetFlow data with Lancope's StealthWatch solution can provide network visibility and help streamline security analysis and response to cyber threats. It describes how NetFlow allows collecting vast amounts of network metadata at scale which can then be analyzed using behavioral algorithms to detect anomalies and threats. It also provides an example of how StealthWatch helped investigate and mitigate a DNS amplification distributed denial of service attack. The document concludes by describing how EndaceFlow NetFlow generators and Lancope's StealthWatch solution were deployed by a customer to improve security incident response times.