On Mon, Dec 10, 2012 at 08:10:57PM -0500, TFML wrote:
Any recommendations on a SIEM system?
Free?
Simple Event Correlator (SEC) is pretty powerful, but obviously has a pretty good learning curve and no GUI.
If you have a lot of $$ to spend, ArcSight is probably the industry leader.
Ray
Try anyone of these..
http://communities.alienvault.com/
http://www.cyberoam-iview.org/
On Tue, Dec 11, 2012 at 8:31 AM, Ray Van Dolson rayvd@bludgeon.org wrote:
ArcSi
Thanks, I'll give all a look. I putting all options on the table free or not. I've used SolarWinds before, but they get expensive as you request for more out of them. Alienvault seems to do it all with one price instead of selling it in parts like SolarWinds.
On Dec 11, 2012, at 12:54 AM, ankush grover ankushcentos@gmail.com wrote:
Try anyone of these..
http://communities.alienvault.com/
http://www.cyberoam-iview.org/
On Tue, Dec 11, 2012 at 8:31 AM, Ray Van Dolson rayvd@bludgeon.org wrote:
ArcSi
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Am 11.12.2012 um 20:38 schrieb John R Pierce pierce@hogranch.com:
On 12/10/2012 5:10 PM, TFML wrote:
Any recommendations on a SIEM system?
our corporate security people are deploying QRadar from Q1 Labs. this is a commercial package and I know very little about it.
What kind of website is that where a "data-sheet" doesn't even say if it runs on Windows or Linux?
OK, so technically it does not matter that much (at a CxO-level). But I hate security-vendors who run IIS web servers ;-) And I don't want to run security-tools on Windows….
Does anyone know more about it?
On 12/11/2012 12:17 PM, Rainer Duffner wrote:
What kind of website is that where a "data-sheet" doesn't even say if it runs on Windows or Linux?
OK, so technically it does not matter that much (at a CxO-level). But I hate security-vendors who run IIS web servers;-) And I don't want to run security-tools on Windows….
Does anyone know more about it?
I think the web server portion is Java based (tomcat or whatever). they offer it as an appliance server as well as software installed on customer equipment.
-
ankush grover -
John R Pierce -
Rainer Duffner -
Ray Van Dolson -
TFML