Logging tools to help identify and respond to network attacks, suspicious behavior and policy violations.
|The Customer Log Module Logging and Status Software Blade provides comprehensive information on security activity through logs and a complete, visual picture of changes to gateways, tunnels, remote users, and security activities. More…|
|EventTracker, by Prism Microsystems, delivers business critical solutions that transform high-volume cryptic log data into actionable, prioritized intelligence that will fundamentally change your perception of the utility, value and organizational potential inherent in log files. EventTracker’s leading solutions offer Security Information and Event Management (SIEM), real-time Log Management, and powerful Change and Configuration Management to optimize IT operations, detect and deter costly security breaches, and comply with multiple regulatory mandates. More…|
|Q1 Labs‘ QRadar is an innovation in the visualization of network security. It monitors and manages threats and misuse to an enterprise environment.QRadar SIEM provides an integrated network security solution that converges typically siloed network and security information into a single, cohesive system. QRadar SIEM’s unique approach enables organizations to deliver an unparalleled set of network security intelligence services. QRadar Log Manager provides a comprehensive, turnkey log management solution for organizations of all sizes. Log management has emerged as a required part of delivering security best practices and meeting specific auditing and reporting requirements of government regulations.QRadar Risk Manager provides organizations with a comprehensive security intelligence solution, allowing them to get not only the forensics of the “during” and “after” an attack, but also enabling them to answer the “What if?” ahead of time, thereby minimizing the risk on their networks, their operations and ultimately protect their organizations’ brand and intellectual property. QRadar Risk Manager leverages and extends the value of a SIEM deployment to greatly improve your organization’s ability to automate risk management functions in mission critical areas including network and security configuration, threat modeling and simulation, compliance management and vulnerability assessment. More…|
|RSA enVision offers enterprise-classed Log Management and SIEM. With real-time security-event alerts, monitoring, and drill-down forensic functionality, enVision security information and event management gives administrators visibility and understanding of how their network is used and the threats and risks to the infrastructure and applications, enabling more effective actions to mitigate those risks for the future. enVision provides an intuitive forensic tool for investigating potential threats and compliance challenges, providing business-critical visibility into specific behaviors by end users for effective remediation by your security and operations teams. More…|
|SecureWorks – the Managed Security Services Provider – offers two logging services.With SecureWorks Log Monitoring Services, you choose the platforms where logs must be monitored (servers, security infrastructure, network components, etc.) and the service level you require (full management, monitoring or self-service). Reports are available through the SecureWorks Portal for all platforms and service levels where you can use built-in workflow to capture signatures for audit purposes. SecureWorks Log Retention Service helps organizations satisfy security and compliance requirements for log collection, storage and reporting without the management overhead and capital expense required for log management products. Leveraging the high performance LogVault technology, SecureWorks’ Log Retention is a cost-effective option that integrates seamlessly with other Managed Security Services to provide comprehensive security and compliance solutions. More…|
|Solarwinds SIEM – Security Information Manager is the leading provider of security information and event management (SIEM) technology for midmarket enterprises. This award-winning product combines real-time log management, IT search, event correlation and endpoint security with active response for true proactive network defense. The result is a unique network appliance that delivers unprecedented visibility, security and control. More…|
|Tripwire Change Audit and Log Center offer the most comprehensive change monitoring software in the industry. Once limited to detecting changes in files, Tripwire can now detect changes in desktops, servers, routers, databases, file systems, Microsoft Exchange, Microsoft IIS, VMWare, and much more. More…|