RE: log analyser




Symantec SSIM is also a best shot you want to look at.


Amardeep Singh

-----Original Message-----
From: listbounce@xxxxxxxxxxxxxxxxx [mailto:listbounce@xxxxxxxxxxxxxxxxx]
On Behalf Of aditya mukadam
Sent: Tuesday, June 02, 2009 7:54 AM
To: sec@xxxxxxxx; security basics
Subject: Re: log analyser

Andy,

There are quite lot of solutions out there based on your requirement
to collect, correlate, analyze etc . I would recommend you to take a
look at below:

1) Netforensics
2) LogRhythm
3) Juniper STRM
4) ArcSight

Feel free to let me know if any questions.

Thanks,
Aditya Govind Mukadam
CISSP,CEH, JNSA-Advanced Security, JNCIA-SSL,CQS-PIX,CQS-VPN
http://www.linkedin.com/in/adityamukadam


On Fri, May 29, 2009 at 4:55 AM, <sec@xxxxxxxx> wrote:
Hi,

can someone of you recommend a good enterprise log analyser solution?
i have to collect, corrolate and analyse about 1200 windows machines and
200 linux boxes. i want to do this in real-time, trigger actions (like
email notification), make sense out of e.g. ten failed login attempts
following the one successful etc.

any hint would be helpful
thanks
andy


------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

Need to pass the CISSP? InfoSec Institute's CISSP Boot Camp in both
Instructor-Led and Online formats is the most concentrated exam prep
available. Comprehensive course materials and an expert instructor means
you pass the exam. Gain a laser like insight into what is covered on the
exam, with zero fluff!

http://www.infosecinstitute.com/courses/cissp_bootcamp_training.html

------------------------------------------------------------------------



------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

Need to pass the CISSP? InfoSec Institute's CISSP Boot Camp in both
Instructor-Led and Online formats is the most concentrated exam prep
available. Comprehensive course materials and an expert instructor means
you pass the exam. Gain a laser like insight into what is covered on the
exam, with zero fluff!

http://www.infosecinstitute.com/courses/cissp_bootcamp_training.html
------------------------------------------------------------------------


------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

Need to pass the CISSP? InfoSec Institute's CISSP Boot Camp in both Instructor-Led and Online formats is the most concentrated exam prep available. Comprehensive course materials and an expert instructor means you pass the exam. Gain a laser like insight into what is covered on the exam, with zero fluff!

http://www.infosecinstitute.com/courses/cissp_bootcamp_training.html
------------------------------------------------------------------------



Relevant Pages

  • RE: log analyser
    ... can someone of you recommend a good enterprise log analyser solution? ... InfoSec Institute ... InfoSec Institute's CISSP Boot Camp in both ... Gain a laser like insight into what is covered on the exam, ...
    (Security-Basics)
  • RE: log analyser
    ... Subject: log analyser ... InfoSec Institute ... Instructor-Led and Online formats is the most concentrated exam prep ... Comprehensive course materials and an expert instructor means ...
    (Security-Basics)
  • RE: SMTP behind NAT
    ... InfoSec Institute ... InfoSec Institute's CISSP Boot Camp in both ... Instructor-Led and Online formats is the most concentrated exam prep ... Comprehensive course materials and an expert instructor means ...
    (Security-Basics)
  • Re: Network Assessment tool
    ... Nmap, Arpwatch, SNMPwalker, Nessus, and a number of other tools. ... InfoSec Institute ... InfoSec Institute's CISSP Boot Camp in both ... Instructor-Led and Online formats is the most concentrated exam prep ...
    (Security-Basics)
  • Re: Security Jobs
    ... One thing to bear in mind is that security is much more than ... InfoSec Institute ... InfoSec Institute's CISSP Boot Camp in both ... Instructor-Led and Online formats is the most concentrated exam prep ...
    (Security-Basics)