Quick, take a look at these four log entries Mar 29 2014 09:54:18: %PIX-6-302005: Built UDP connection for faddr 220.127.116.11/53337 gaddr10.0.0.187/53 laddr 192.168.0.2/53 Mar 12 12:00:08 server2 rcd: id=304 COMPLETE ‘Downloading https://server2/data/red-carpet.rdf’time=0s (failed) 18.104.22.168 – – … Continue reading
Latest Version of EventTracker Offers Advanced Solution for Threatscape 2015 and Beyond COLUMBIA, MD- Jul 14, 2015- EventTracker, a leading provider of comprehensive SIEM solutions, today announced the general availability … Continue reading
Architecture Series Change Management Series Compliance Series Enterprise Seriescontinue...
Safeguarding the IT environment has become an increasingly difficult challenge as cyber attackers have become more sophisticated and prolonged in their efforts to steal valuable information. How can Threat Intelligence help? (more…)
Shellshock, Windows & EventTracker Energy Sector: Highly Valuable & Highly Vulnerable Selecting a SIEM - Tips & Trend 2014 Configuration Assessment continue...
EventTracker uses Knowledge Packs to assign meaning and severity to incoming data. This allows users to "make sense" of the often cryptic, high volume log messages. A Knowledge Pack may include definitions for Alerts, Reports, Dashboards, Smart Search Tokens, Behavior and Correlation rules, which are used in various EventTracker modules.
EventTracker's solutions helps to automate the steps required by each standard to insure compliance, and maintain it going forward. With EventTracker, organizations can secure the environment, establish the baseline, track user activity, alert on potential violations, and generate audit ready reports.
A carefully curated collection of the latest threat intelligence from reliable sources formatted for easy import into EventTracker. Sources include FBI InfraGuard, US CERT, Internet Storm Center, dshield.org, abuse.ch, etc.
Log Knowledge Base
The EventTracker Knowledgebase is the largest searchable repository for detailed information about event logs generated by Windows/*nix/Cisco (syslog), Antivirus, Veritas, OpenManage, VMWARE, and more. The KB is a free service provided by Prism Microsystems.