Snare. The world standard for effectively gathering and filtering IT-event data for critical security monitoring, analysis, auditing and archiving.
Operating System Agents
Snare for Windows provides front end filtering, remote control, and remote distribution for Windows eventlog data. Formerly known as BackLog, Snare for Windows interfaces into the Windows EventLog / Windows auditing subsystem. It can be used as a standalone event log auditing tool, or can send data to the Snare Server, or a SYSLOG server, for analysis and storage. More Details
As regular users of the Linux operating system, the team at InterSect Alliance believe that one of the key missing features that is holding Linux back from deployment in large organisations, particularly those with significant security requirements, is the availability of host based intrusion detection systems - ie: system auditing or event logging facilities. Snare for Linux provides a 'C2' or 'CAPP' style audit subsystem for the Linux operating sysystem. It can be used as a standalone auditing tool for Linux, or can send data to the Snare Server for analysis and storage. More Details
Snare for Solaris provides front end filtering, remote control, and remote distribution for Solaris audit data, interfacing with the underlying C2/ CAPP-style Sun "Basic Security Module". Snare for Solaris can be used as a standalone auditing tool, or can send data to the Snare Server for analysis and storage. More Details
Snare for OSX enhances the platform by making use of the TrustedBSM auditing framework to provide remote control, and remote distribution of OSX audit data for Apple MAC products. Able to be used stand alone as an auditing tool or in conjunction with Snare Server for remote analysis and storage, Snare for OSX makes use of the latest in encryption to help provide PCI compliance for your business.More Details