May EventSource Newsletter Article by: Randy Franklin Smith One thing I always wished you could do in Windows auditing was mandate that access to an object be audited if the user was NOT a member of a specified group.  Why?  … Continue reading →

April EventSource Newsletter Detecting Persistent Attacks with SIEM As you read this, attackers are working to infiltrate your network and ex-filtrate valuable information like trade secrets and credit card numbers. In this newsletter featuring research from Gartner, we discuss advanced … Continue reading →

March EventSource Newsletter By: Randy Franklin Smith I think one of the most underutilized features of Windows Auditing and the Security Log are Process Tracking events. In Windows 2003/XP you get these events by simply enabling the Process Tracking audit … Continue reading →

February EventSource Newsletter By: Rich Ptak, Managing Partner, Ptak, Noel & Associates LLC On a recent flight returning from an engagement with a client, my seating companion and I exchanged a few words as we settled into the flight before … Continue reading →

January EventSource Newsletter By: Randy Franklin Smith I often encounter a dangerous misconception about the Windows Security Log: the idea that you only need to monitor domain controller logs.  Domain controller security logs are absolutely critical to security but they … Continue reading →

December EventSource Newsletter By: Rich Ptak, Managing Partner, Ptak, Noel & Associates LLC “The beginning of a new year marks a time of reflection on the past and anticipation of the future. The result for analysts, pundits and authors is … Continue reading →

Troubleshooting problems with enterprise applications and services are often exercises in frustration for IT and business staff. The reasons are well documented – complex architectures, disparate, unintegrated monitoring solutions, and minimal coordination between technology and product experts while attempting to … Continue reading →

October EventSource Newsletter By: Rich Ptak, Managing Partner, Ptak, Noel & Associates LLC I’ve spent the last 20 years analyzing the Information Technologies market. My work with vendors has ranged from developing business strategies and honing messaging to defining product … Continue reading →

September EventSource Newsletter By: Rich Ptak, Managing Partner, Ptak, Noel & Associates LLC Despite its significant costs and a mixed record of success, the compliance-related load imposed on today’s enterprise has yet to decrease. Current trends driven by government legislative … Continue reading →

August EventSource Newsletter By: Rich Ptak, Managing Partner, Ptak, Noel & Associates LLC Unfortunately, IT is not perfect; nothing in our world can be. Compounding the inevitable failures and weaknesses in any system designed by fallible beings, are those with … Continue reading →