Security Basics mailing list archives
Re: Event Log Monitor Program
From: p1g <killfactory () gmail com>
Date: Thu, 27 Sep 2007 11:09:17 -0400
Opensource - OSSIM KIWI can be used to centrally collect events from WIN32 via snare(opensource syslog client) then you can forward those events to Aanval (free for 1 syslog source and 1 snort ids source) Aanval may provide the insight you are looking for. Commercial- LTAuditor, Q1-labs(Enterasys) <-- real nice!! and Tenable Log Coorelation <--supernice!! On 9/20/07, Adam Savage <Adam_Savage () skillsoft com> wrote:
I'm looking for a good event log program that can consolidate all my event logs from my servers into one location. Then I can report on them and such. We purchased GFI Security Event Log Monitor but we find the program cumbersome at best and doesn't give you any insight on some of the event messages that are produced. I'd like to know if there is a freeware/opensource solution. I know GFI has recently come out with the Successor to SELM called EventsManager but we'd like to look into some other products that are out there first. Any replies would be greatly appreciated. Thank you, Adam
-- -p1g SnortCP ,,__ o" )~ oink oink ' ' ' ' If you spend more on coffee than on IT security, you will be hacked. What's more, you deserve to be hacked. -- former White House cybersecurity czar Richard Clarke
Current thread:
- Re: File Permission Audit Tool - Windows, (continued)
- Re: File Permission Audit Tool - Windows Kurt Buff (Sep 26)
- RE: File Permission Audit Tool - Windows Roger A. Grimes (Sep 26)
- Re: File Permission Audit Tool - Windows Nikhil Wagholikar (Sep 26)
- RE: File Permission Audit Tool - Windows McMahon, Thomas J. (Sep 26)
- RE: File Permission Audit Tool - Windows Steve Johnston (Sep 26)
- Re: File Permission Audit Tool - Windows p1g (Sep 27)
- RE: Event Log Monitor Program Deepak J. Mathew (Sep 26)
- Novell Event Log Monitor Program Meinecke, Dennis (Sep 26)
- Re: Novell Event Log Monitor Program gjgowey (Sep 26)
- Re: Novell Event Log Monitor Program p1g (Sep 27)
- Novell Event Log Monitor Program Meinecke, Dennis (Sep 26)
- Re: Event Log Monitor Program p1g (Sep 27)
- Re: Fwd: Event Log Monitor Program mail5540064 (Sep 25)