|
|
|
|
| News | SolutionaryIAI is very proud to announce that Solutionary has selected Snare as their technology partner for the ActiveGUARD managed service platform. | InterSect Alliance InternationalAs some are already aware, InterSect Alliance was recently purchased by Prophecy International, and is now InterSect Alliance International Pty Ltd. More good news to come. | |
|
The Snare and Epilog agents, from InterSect Alliance, are considered
to be the de-facto industry standard for eventlog and audit log collection.
The agents are available in two different versions:
- The Snare, and Epilog Enterprise Agents - The industry standard for capturing and filtering audit and event log data, in a supported package, and with an enterprise-level feature set, including guaranteed delivery, encryption, and custom event sources.
- Snare, and Epilog: Open source editions - Audit and event log collection, with code available under the terms of the GNU Public License.
| Feature | Enterprise Edition | Open Source Edition |
|---|
| Guaranteed message delivery (TCP) |  | |
| Event log caching | | |
| Encryption (with the Snare Server) | | |
| Log message simulcasting | | |
| Dynamic DNS support | | |
| Centralized configuration management | | |
| Custom Windows eventLog sources | | |
| Vendor product support | | |
| Easy to use installer | | |
| Filter for events of interest | | |
| Remote control interface | | |
| View local and network users and groups | | |
| View local Registry configuration | | |
| UDP and Syslog destination options | | |
| Non-GUI install option | | |
| Upgrade option to preserve existing configuration settings | | |
| Debug mode | | |
 |
Snare Epilog for Windows
Epilog for Windows is a program that facilitates the central collection and processing of Windows text-based log files. Epilog for Windows also supports date stamped log files such as IIS, ISA, SMTP and Exchange message tracking logs. Log information is converted to tab delimited text format, then delivered over UDP to a remote server.
Epilog is currently configured to deliver audit information to a SYSLOG server running on a remote (or local) machine. A configuration utility allows you to set the appropriate syslog target and priority, as well as the target DNS or IP address of the server that should receive the event information. It should be noted that many syslog servers are not designed to cope with the sorts of volume of data that multiple snare agents can potentially generate.
Epilog is now available as a MultiArch installer, compatible with 32 bit and 64 bit (X64 and IA64) Windows.
|
|
Log Configuration
|
Event Monitor
|
|
|
|
|
Like to keep up to date with Snare releases? Sourceforge offer an email notification service that will send you an email each time we release a new version of Snare. Log in to sourceforge using an existing OpenID compatible account, then jump to the Snare tracker page, and hit the 'Monitor' button, to set this up.
|
|
Snare Server |
With its' origins in open source software, the Snare Server from InterSect Alliance provides a central collection, analysis, reporting and archival tool for a very wide variety of log formats. Click here for more information |
Snare Demonstration |
 Snare Introduction  Snare Agents  Snare Server Click on a video above, to find out more about Snare and to access the Snare Demonstration Server |
|
|
![[InterSect Swish]](/images/Right-Swish.jpg)
