Event
Log Management
SNARE is
a comprehensive event monitoring and analysis tool that will add value
to a corporations' current Intrusion Detection System. The SNARE System
consists of two tool sets: the SNARE Agents and the SNARE Server.
The SNARE
agents are installed and configured on systems that are to
be monitored for specific audit activity, then they forward those
events that match the audit criteria to the SNARE Server.
The SNARE
Server provides the dashboard view of all pertinent audit
events from a heterogeneous network. All incoming events from both
the SNARE Agents and system log files are received into a central
location enabling them to be analyzed, recorded and reported on based
on the corporate audit requirements.
The SNARE
System toolset allows for a consolidated view of all your audit requirements
on your network.
The SNARE
System can provide information such as:
- Unauthorized
access to the computer systems;
- Unauthorized
access to sensitive files;
- Unauthorized
use of account privileges;
- Monitoring
users access to the internet;
- and
more.
The benefits
of the SNARE system are the multiple platform support, application support
and firewall support, detection of sensitive activity. Nessus and NMAP
are also included with the Snare Server, providing you with time saved
not to mention the time saved by not having to go through copious amounts
of log files to determine if something is happening on your network
or not.
SNARE agents
are available for a variety of operating systems and applications and
are available under the GNU Public License at sourceforge,
including:
|
Windows |
Linux
|
|
Solaris |
Irix |
| AIX |
IIS/Exchange
Servers |
|
ISA
Servers |
Squid
Proxy Server |
The SNARE
Server is available in three models:
- SNARE
Server 50 - a 2 U rackmount appliance preloaded with the SNARE Server
software, which allows collection of up to 50 SNARE agents and system
log files, providing the benefits of a complete audit and event log
systems for multiple systems and applications and closed agent support.
- SNARE
Server 200 - a 2U rackmount appliance preload with the SNARE Server
Software, whcih allows collection of up to 200 SNARE Agents and System
log files, plus access to all Enterprise agents and a forensics license.
- SNARE
Server 600 - a 2U rackmount appliance preload with the SNARE Server
Software, whcih allows collection of up to 600 SNARE Agents and System
log files, plus access to all Enterprise agents and a forensics license.
Included
with all SNARE Server purchases are support for the open source SNARE
Agents.
The SNARE
Server, combined with the SNARE agents, is used by many organizations
to meet some of the local and federal security requirements, such as
: ACSI 33,
GLBA (Gramm-Leach-Bliley Act),
Sarbanes
Oxley (SOX),
DCID 6/3,
Nispom Chapter 8, HIPAA, California Senate Bill, 1386, US Patriot
Act.
Contact
us to find out how SNARE can ensure compliance or visit our dedicated
web site for snare at www.snare-server.com.
|
|
|
|
