Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: log analyser

From: dgonzalez.itpro () gmail com
Date: Mon, 1 Jun 2009 17:04:56 -0600
Hello, 

We just purchased Event Tracker by Prism Micro Systems
(http://www.prismmicrosys.com/eventTracker.php)

It's a really great product with very powerful reporting. It has support for Cisco devices, syslogs, UNIX and windows. 
Also has configurable notifications so you know when software is installed or uninstalled, USB devices are plugged in, 
systems are shutdown, see application usage, disk space usage, and more. It even does some IDS.

There is an all encompassing correlated events view, or you can select one devices to see its' correlated events or 
drill down even further and on click on only "windows failed network log in's" to see those events. All the events 
categories can be customized for specific events for your specific needs.

Not as pricey as other log management systems I have seen and not the cheapest either, but very well worth what we 
spent.

Danny

------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

Need to pass the CISSP? InfoSec Institute's CISSP Boot Camp in both Instructor-Led and Online formats is the most 
concentrated exam prep available. Comprehensive course materials and an expert instructor means you pass the exam. Gain 
a laser like insight into what is covered on the exam, with zero fluff! 

http://www.infosecinstitute.com/courses/cissp_bootcamp_training.html
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: