Re: Looking for HIDS-only products for XP/2000Pro

From: AsTriXs (astrixs_at_gmail.com)
Date: 08/05/05

  • Next message: Ed Gibbs: "Re: Cisco IOS Shellcode - McAfee IPS Protection" 
    Date: Fri, 5 Aug 2005 17:09:13 +0530
To: Bill Stout <bill.stout@greenborder.com>

    hi,

    Check out
    http://www.mcafeesecurity.com/us/products/mcafee/host_ips/category.htm

    McAfee(r) Entercept(r) agents protects desktops and servers against
    zero-day and known attacks. As the only host intrusion prevention
    system (IPS) combining behavioral rules, signatures and a system
    firewall, McAfee Entercept provides unmatched proactive threat
    protection of critical systems and applications, preserving the
    confidentiality of data and ensuring business availability 

    -- 
[AsTriXs]
[zooStatioN-zeBra]
On 8/4/05, Bill Stout <bill.stout@greenborder.com> wrote:
> I'm assuming most companies do both HIDS and blocking.  Are there any
> companies which specialize in HIDS for XP/2000Pro?  Specifically passive
> (worm/virus/Trojan) attacks, maybe with an online database for
> reference.
> 
> In other words, if we have a product which protects against certain
> vectors (IE & Outlook), and we want to prove that it did protect them
> although it doesn't detect, what could I use to detect and identify
> specific attacks?
> 
> Bill Stout
> Director of IT
> GreenBorder, Inc
> www.greenborder.com
------------------------------------------------------------------------
Test Your IDS
Is your IDS deployed correctly?
Find out quickly and easily by testing it 
with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 
to learn more.
------------------------------------------------------------------------
  • Next message: Ed Gibbs: "Re: Cisco IOS Shellcode - McAfee IPS Protection"

    Relevant Pages

    • Re: YANI: Quiver the Rogues
      ... game over displacement is long term planning. ... No. Poison attacks are actually what MC3 helps most against, ... success of such attacks protects pretty well already. ... even after ascending with displacement several times. ...
      (rec.games.roguelike.nethack)
    • Looking for HIDS-only products for XP/2000Pro
      ... I'm assuming most companies do both HIDS and blocking. ... if we have a product which protects against certain ... specific attacks? ...
      (Focus-IDS)
    • Re: Start up question
      ... Get a routing device, protects you against a ... large part of attacks and vulnerabilities. ... NAT is a cool solution + a great ...
      (comp.security.firewalls)
    • Re: host-based ids evaluation
      ... I agree with Toby's opinion on IDS terminology. ... these are sometimes referred to as "Network Node IDS". ... -> Logfile surveillance (classic HIDS) ... prevent most attacks from being performed if the target application does not ...
      (Focus-IDS)
    • RE: host-based ids evaluation
      ... If you are looking at a single system then you are a HIDS, ... You can now get into deeper distinctions regarding types of IDS techniques ... but HIDS vs. NIDS is as simple as the focus for the product. ... HIDS can detect local-to-local attacks (or ...
      (Focus-IDS)