Viimeisin kampanjatiedotteemme on ilmestynyt 18.3.24, kts tarkemmat tiedot KAMPANJA-linkistä!

Softa SuperStore

19.03.2024 • • 05:53

Asiakaspalvelu
ark. 10.30 - 16
09 - 3424 370
 

          TUOTEHAKU

 TUOTERYHMÄT

 Muokkaa evästevalintoja
Näytä ostoskori
PÄÄVALIKKO
 
Luotettava Kumppani –yritys
 
Veloitukseton päivitysmuistutuspalvelu!
 
Softa SuperStore - yksi Suomen vahvimmista!

 

ANET SureLog SIEM SMB

ANET is privately held software company incorporated in VA, USA founded 2008 and branches in Turkey and Switzerland . Our mission is to build a software company that embraces "open development philosophy" and provides innovative solutions to customer problems in collaboration with customers.

We are a SIEM pioneer with over 250 clients throughout Europe experiencing the ANET difference.

SIEM. But different.

We have a long history of successful ventures, and have been active participants in the software management revolution for over twenty years.

Our Mission Statement

ANET is dedicated to providing the most technologically advanced, Intelligent Log Management Solution available today. ANET enables customers to efficiently tackle the daunting tasks involved with Log Management, while letting customers achieve compliance with the stringent government regulations.

We pride ourselves on being the Windows security log experts that help our clients reduce the huge cost associated with log retention and by replacing many manual methods with smart automation.

Our goal is to ensure that every customer has the means to increase security from internal espionage attempts, while ensuring the highest level of IT performance.

In doing so, we are providing our clientele with the largest return on investment possible and will continue to strive for new and exciting breakthroughs in the arena of Forensics and “Intelligent” Log Management.

SureLog - Cost-effective Security
Information and Event Management (SIEM)

With SureLog SMB, You can quickly investigate alerts or possible breaches to analyze your threat landscape with minimal security resources.

SureLog SIEM

  • Automate 24x7 security monitoring, alerting, and response
  • Collect and correlate log and event data in real-time
  • Stream line compliance reporting and security audits
  • Fast for ensic investigation and root cause analysis
  • Gain the power of SIEM without spending most of the IT life ctyle time and IT Budget
  • Perform rapid root cause analysis with built-in intelligence and strong visual izationa cross net works, systems, applications, and security

Advantages of SureLog Correlation Engine

  • Fast. Supports max 50 000 EPS with thousands of rules.
  • Trace multiple logs with different types within define time frame. Sample rule: Detects An Unusual Condition Where A Source Has Authentication Failures At A Host But That Is Not Followed By A Successful Authentication At The Same Host Within 2 Hours
  • Correlate different logs (Example: Windows User Creation Event and Telnet Event) according to related fields. Sample rule:Look for a new account being created followed by immediate authentication activity from that same account would detect the backdoor account creation followed by the account being used to telnet back into the system
  • Trace both a log being created with desired parameters or not. Sample rule: Detects An Unusual Condition Where A Source Has Authentication Failures At A Host But That Is Not Followed By A Successful Authentication At The Same Host Within 2 Hours
  • Audit privileged user activity such as new account creation for greater operational transparency
  • Correlate privileged user behavior with specific network activity. Sample rule:Look for a new account being created followed by immediate authentication activity from that same account would detect the backdoor account creation followed by the account being used to telnet back into the system
  • Correlation rule editor is simple to use
  • Multiple filtering options
  • Compression-based correlation. Monitors multiple occurrences of the same event, removes redundancies and reports them as a single event.
  • Threshold-based correlation. Has a threshold to trigger a report when a specified number of similar events occur.
  • Filter-based correlation. Inspects each event to determine if it matches a pattern defined by a regular expression. If a match is found, an action may be triggered as specified in the rule.
  • Sequence-based correlation. Helps to establish causality of events. Events can be correlated based on specific sequential relationships. For example, synchronizing multiple events such as event A being followed by event B to trigger an action.
  • Time-based correlation is useful for correlating events that have specific time-based relationships. Some problems can be determined only through such temporal correlation. For example, time based correlation can be used to implement cleanup rules given a specific interval

Expect More, Pay Less!

Automate the monitoring process for resource-constrained security pros with SureLog software. 

Security pros can’t stop what they can’t see. But without the people to actively monitor security activity, visibility is limited. SureLog was specifically designed to address the monitoring needs of small security staffs. SureLog delivers increased security visibility and reduced time-to-respond duration without needing additional headcount. 

 

 

Hundreds of supported data sources plus embedded file integrity monitoring delivers rich information for intelligent monitoring

 

 

 

Over 700 expert-developed rules churn through data in real-time to pinpoint potential security incidents

 

 

 

 

Active response can be configured to automatically quarantine, block, or temporarily disable suspicious activity

 


 

Intuitive dashboards for event and log analysis plus rapid search enable security pros to quickly assess incidents

 

 

Built-in intelligence across networks, applications, and security speeds up root cause analysis

 

 

 

Simplify IT Compliance and Regulatory Audit with SureLog

SureLog enables you to effectively manage the impact of compliance risk on your organization. Clients can track regulatory change, manage associated policies and controls. 

An effective monitoring program implemented with SureLog addresses compliance gaps, demonstrates risk management, and automates compliance reporting

Compliance audits are quickly evolving from checklist-based to risk-based. To address this increased scrutiny, organizations must demonstrate a strong security focus while at the same time address time-consuming compliance reporting requirements. SureLog helps regulated organizations get the reporting automation they need while providing an all-in-one event and log monitoring, investigation, and incident-response system that supports risk-based monitoring.

 

 

Manage the Cost of Security Operations while Improving Effectiveness

Whether you already have a SIEM that is consuming your budget and resources or you are drowning in manual, ineffective security processes, SureLog delivers solid ROI through affordability, automation, and improved security.

It’s no secret that many SIEM implementations are considered money pits. High license costs, overall complexity, and the need for constant care and feeding have made many organizations who desperately need SIEM benefits give up on it as a solution. SureLog drastically reduces the costs of SIEM while providing greater value to resource-constrained security pros. By eliminating the development of large enterprise features that are seldom used and focusing on those that improve operations, SureLog is offered at a very affordable license, maintenance, and operational cost.

  • All-in-one simple licensing model —licensing is typically less than enterprise SIEM maintenance costs
     

  • Includes traditional SIEM capabilities plus embedded log management, file integrity monitoring, active response, policy-based USB blocking, and SQL database monitoring
     

  • Our focus on usability and deployment means no additional consulting, training, or headcount required

In-Memory Event Correlation 

Access to true real-time log and event correlation by processing log data before it is written to the database, enabling you to immediately respond to security threats and vital network issues with SureLog event correlation feature.

Event correlation is key to an effective SIEM solution. But, not all correlation engines are built equally. With SureLog, you get true, real-time in-memory event correlation to instantly detect and mitigate threats. SureLog is a log analysis tool which provides immediate incident awareness and actionable intelligence so you can respond to vital issues at network speed.

SureLog’s real-time analysis means you’re able to instantly take action to contain a threat or thwart an attack. Moreover, SureLog  provides automated, active responses for hands-free threat mitigation, so you can safeguard your network 24x7.

SureLog enables you to effectively troubleshoot both security and operational issues—be it a data breach or a network performance problem—by understanding the relationship between different activities using multiple event correlations. For instance, an unauthorized application gets installed then a significant increase in FTP traffic is seen going in and out of that system.

SureLog also has the unique ability to set independent thresholds for activity per event, or group of events. By combining SureLog’s powerful correlation and thresholding abilities, you get security intelligence you can count on and reduce false positives.

And, with over 300 built-in event correlation rules and easy-to-understand categorization, SureLog delivers visibility and control right out of the box. Correlation’s library of configurable pre-built rules, along with the ability to create advanced rules with easy rule editor, means you can say goodbye to writing complex scripts to correlate events—eliminating hours of work for you.

Get the Fastest EPS Performance on the Market

A security information and event management application is only as good as the amount of information it can process in real-time. SureLog gives you the fastest events per second (EPS) logging available today, so you can identify threats  as they occur.

Fast EPS performance is also critical to maintaining compliance with ISO 9002 standards as well as SOX, HIPAA, PCI and other federal regulations for online security. Your data will stay safe, you'll be protected from liability, and you'll be ready for surprise audits whenever they occur.

Surelog Detail

  • Cost-effective Security Information and Event Management (SIEM) software
  • Real-Time Event Correlation
  • Log Search
  • Real-time Alerting
  • Dashboard and User based Views
  • Automates the entire process of managing terabytes of machine-generated logs
  • Agent-less log analytics software for network security devices
  • Collects, archives, and analyzes security device logs and generates forensic reports from a central console
  • Provides end-point security monitoring and analysis, employee Internet monitoring, and bandwidth monitoring
  • Supports capacity planning, policy enforcement, security, and compliance audit reporting
  • Works with open source and commercial network firewalls (Check Point, Cisco, Juniper, Fortinet, Snort, and more) and IDS/IPS
  • Supports VPNs, proxies, and related security devices
  • Collects, analyzes, searches, reports, and archives from a central location
  • Reports on user activity, regulatory compliance, historical trends, and more
  • Conducts log forensics analysis, monitors privileged users, and ensures compliance with regulatory bodies
  • Agent-less Log Collection
  • Agent based Log Collection
  • Log Search
  • Log Analysis
  • Log Archiving
  • Log Forensics
  • Importing Event Logs
  • User Authentication
  • Ready-built EventLog Reports
  • Custom EventLog Reports
  • Microsoft Internet Information Services (MS IIS) Server Log Reports
  • VMware Server Log Management Reports
  • Active Directory Log Reports
  • Privilege User Monitoring (PUMA) Reports
  • User Session Monitoring
  • Event Log Reports
  • Historical Event Trends
  • Advanced Search Result as Report Profile
  • Microsoft IIS Web server application
  • Microsoft IIS FTP server application
  • DHCP Windows application
  • DHCP Linux application
  • MS SQL database application
  • Oracle database application (Audit)
  • Apache web server application
  • Print server application
  • Windows Terminal Server Log Monitoring
  • Custom Reports
  • Scheduled Reports
Request a SureLog Demo
Comparison  SureLog SureLog
 SMB
SureLog
 Reporter
       
Log Management Yes Yes Yes
       
Forensics Yes Yes Yes
       
Big Data Infrastructure Yes Yes Yes
       
Threat Intelligence Yes Yes No
       
Correlation Yes Yes No
       
ELK Entegration Yes Yes No
       
Advanced CorrelationPack Yes No No
       
Distributed Architecture Yes No No
       
Distributed Correlation Yes No No
       
Snort Entegration Yes No No
       
Suricate Entegration Yes No No
       
Number of Rules in Corr library >50000 3000 No
       
Max EPS >50000 <10000 >50000

Softa SuperStore
Softa SuperStore
Softa SuperStore