|
Security Basics
log analyser May 28 2009 11:25PM sec nd-f com (7 replies) Re: log analyser Jun 11 2009 03:38AM TT-SEC (secfoc tigerteam net) (1 replies) Re: log analyser Jun 12 2009 03:32PM Richard Thomas (austindad gmail com) (1 replies) |
|
|
Privacy Statement |
Symantec SSIM is also a best shot you want to look at.
Amardeep Singh
-----Original Message-----
From: listbounce (at) securityfocus (dot) com [email concealed] [mailto:listbounce (at) securityfocus (dot) com [email concealed]]
On Behalf Of aditya mukadam
Sent: Tuesday, June 02, 2009 7:54 AM
To: sec (at) nd-f (dot) com [email concealed]; security basics
Subject: Re: log analyser
Andy,
There are quite lot of solutions out there based on your requirement
to collect, correlate, analyze etc . I would recommend you to take a
look at below:
1) Netforensics
2) LogRhythm
3) Juniper STRM
4) ArcSight
Feel free to let me know if any questions.
Thanks,
Aditya Govind Mukadam
CISSP,CEH, JNSA-Advanced Security, JNCIA-SSL,CQS-PIX,CQS-VPN
http://www.linkedin.com/in/adityamukadam
On Fri, May 29, 2009 at 4:55 AM, <sec (at) nd-f (dot) com [email concealed]> wrote:
> Hi,
>
> can someone of you recommend a good enterprise log analyser solution?
i have to collect, corrolate and analyse about 1200 windows machines and
200 linux boxes. i want to do this in real-time, trigger actions (like
email notification), make sense out of e.g. ten failed login attempts
following the one successful etc.
>
> any hint would be helpful
> thanks
> andy
>
>
------------------------------------------------------------------------
> This list is sponsored by: InfoSec Institute
>
> Need to pass the CISSP? InfoSec Institute's CISSP Boot Camp in both
Instructor-Led and Online formats is the most concentrated exam prep
available. Comprehensive course materials and an expert instructor means
you pass the exam. Gain a laser like insight into what is covered on the
exam, with zero fluff!
>
> http://www.infosecinstitute.com/courses/cissp_bootcamp_training.html
>
------------------------------------------------------------------------
>
>
------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute
Need to pass the CISSP? InfoSec Institute's CISSP Boot Camp in both
Instructor-Led and Online formats is the most concentrated exam prep
available. Comprehensive course materials and an expert instructor means
you pass the exam. Gain a laser like insight into what is covered on the
exam, with zero fluff!
http://www.infosecinstitute.com/courses/cissp_bootcamp_training.html
------------------------------------------------------------------------
------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute
Need to pass the CISSP? InfoSec Institute's CISSP Boot Camp in both Instructor-Led and Online formats is the most concentrated exam prep available. Comprehensive course materials and an expert instructor means you pass the exam. Gain a laser like insight into what is covered on the exam, with zero fluff!
http://www.infosecinstitute.com/courses/cissp_bootcamp_training.html
------------------------------------------------------------------------
[ reply ]