Enterasys Dragon Host Sensor Listing updated: August 11, 2003

A host-based intrusion defense tool, Dragon Host Sensor monitors individual systems and applications, including today’s most common operating systems, for evidence of malicious or suspicious activity in real time, and monitors key system logs for evidence of tampering. Dragon Host Sensor may be deployed on a protected host or on a dedicated analysis system where logs are forwarded from switches, firewalls, routers and other IDSs and aggregated via SNMP or syslog. Dragon Host Sensor uses a variety of techniques to detect attacks and misuse on a protected system, including analyzing the security event log, checking the integrity of critical configuration files, or checking for kernel level compromises. This hybrid approach ensures that no misuse goes undetected.

• Company: Enterasys Networks, Inc.
• URL: www.enterasys.com
• Email: sales@enterasys.com

• Users' Rating: 4.57 [14 votes] - Vote
• Comments: 0 comments - Post

SecurityManager Listing updated: December 5, 2007

SecurityManager employs active and passive remediation for intrusion detection and policy violations. It imposes a Separation of Duties, and enables object locking to ensure 24x7 protection and compliance. Security Manager provides a graphical dashboard highlighting all risk areas so you instantly know about system vulnerabilities before a security breach occurs. With Security Manager you can enforce, track, and report on security policies in real time – all from a single client.

• Company: Business Intelligence 101
• URL: www.bi101.com
• Email: sales@bi101.com
• Screenshot: click here

• Users' Rating: 4.5 [8 votes] - Vote
• Comments: 0 comments - Post

KFSensor Listing updated: July 13, 2006

KFSensor is a Windows based honeypot Intrusion Detection System (IDS). It acts as a honeypot to attract and detect hackers and worms by simulating vulnerable system services and trojans. By acting as a decoy server it can divert attacks from critical systems and provide a higher level of information than can be achieved by using firewalls and NIDS alone.

KFSensor is designed for use in a Windows based corporate environment and contains many features such as remote management, a Snort compatible signature engine and emulations of Windows networking protocols. With its GUI based management console, documentation and low maintenance, KFSensor provides a cost effective way of improving an organization's network security.

• Company: KeyFocus Ltd.
• URL: www.keyfocus.net
• Email: press@keyfocus.net
• Screenshot: click here
• Price: $990

• Users' Rating: 4.4 [15 votes] - Vote
• Comments: 0 comments - Post

Entercept Listing updated: October 11, 2002

Entercept provides protection for enterprise servers and applications. Using an extensive intrusion dictionary and an exclusive behavior model, it can identify and stop generic and specific intrusions giving companies protection at the operating system level. The Entercept attack database consists of the following types of attack recognition capability: Known Attack Prevention, Unknown Attack Prevention via it's powerful behavioral rules, Buffer Overflow Exploit Prevention, Resource Protection by locking down the critical system resources, Prevention of Privilege Elevation. Features include: Proactive attack response allowing Entercept to block malicious actions before any damage is done - Preconfigured policy template, including full customization options - Security events can generate email messages, create pager notifications, send SNMP traps, and spawn custom processes - SNMP trap data available for integration with management systems - Built-in management reporting, including log information export capability.

• Company: Network Associates Technology, Inc.
• URL: www.mcafee.com
• Email: ordersupport@mcafeeasap.com

• Users' Rating: 4.25 [12 votes] - Vote
• Comments: 0 comments - Post

eTrust Intrusion Detection Listing updated: October 3, 2002

eTrust Intrusion Detection delivers network protection including but not limited to, defense against deployment and execution of Distributed Denial of Service (DDOS) attacks, malicious and unauthorized use of Internet facilities and other network misuse events. Provides realtime, non-intrusive detection, policy-based alerts, ad automatic prevention. Other protective capabilities include enforcing business-use policies through dynamic URL blocking and logging. Fully open and extensible, eTrust Intrusion Detection extends to other protection products such as proxies, routers and firewalls.

• Company: Computer Associates
• URL: www.ca.com
• Email: cainfo@ca.com

• Users' Rating: 4.05 [38 votes] - Vote
• Comments: 0 comments - Post

GFI EventsManager Listing updated: April 2, 2012

GFI EventsManager is an award-winning events monitoring, management and archiving solution, that supports a wide range of event types such as W3C, Windows events, Sylogs and SNMP traps generated by devices such as firewalls, routers and sensors.

GFI EventsManager uses event processing and filtering technologies to identify key events out of the box. Advanced event processing rules allow you to filter out unwanted/trivial events and generate alerts on key issues. GFI EventsManager provides real-time alerting when critical events arise, suggests remedial actions and if applicable triggers corrective actions by automatically launching scripts and executable files. The built-in processing rules provided with the product, add significant value to its functionality aspects, because the information is very difficult to find and requires levels of expertise which are not necessary available to end users.

A free, fully functional, 30-day trial is available for download on our website.

• Company: GFI Software
• URL: www.gfi.com
• Email: info@gfi.com
• Screenshot: click here

• Users' Rating: 3.9 [207 votes] - Vote
• Comments: 0 comments - Post

Intrusion Detection System Listing updated: December 9, 2010

Based on the award-winning Snort® rules-based detection engine, Sourcefire® provides best-in-class network intrusion detection with extensive analytics, powerful reporting, and unrivaled scalability. Through the use of Sourcefire 3D® Sensors and one or more Sourcefire Defense Center® management consoles, Sourcefire IPS deployed as an Intrusion Detection System uses a powerful combination of vulnerability- and anomaly-based inspection methods to detect attacks targeting thousands of vulnerabilities.

• Company: Sourcefire, Inc
• URL: www.sourcefire.com
• Email: rmcdaniel@sourcefire.com

• Users' Rating: no votes - Vote
• Comments: 0 comments - Post