09. 11. 2009 Arianna Cunaccia NetEye

Intrusion Detection con Snort, leader per la Gartner

Snort, sistema open source di network intrusion prevention sviluppato salla Sourcefire, è il più utilizzato sistema IDS/IPS a livello internazionale.

Nel Magic Quadrant Network Intrusion Prevention System della Gartner, Sourcefire si posiziona tra i leaders in base all’abilità di esecuzione e completezza di visione.

I principali punti di forza di Sourcefire, elencati dalla Gartner, sono risultati essere:

  • Real time Network awareness e real time user awareness
  • Utilizzo di Snort come motore di intrusion detection
  • Visibilità di ciò che sta all’interno dei rules (workflow customizzabili, supporto tecnico avanzato)
  • Elevata flessibilità e scalabilità

Anche in NetEye abbiamo integrato già da tempo Snort come network detection system e nell’arco del prossimo anno prevediamo di migliorare e potenziare ulteriormente il modulo di Security management per rispondere alla crescente richiesta di sicurezza da parte dei nostri clienti.

Arianna Cunaccia

Arianna Cunaccia

Author

Arianna Cunaccia

Latest posts by Arianna Cunaccia

27. 10. 2020 Events
NetEye User Group 2020
27. 10. 2020 Webinar
Cyber Security with ntopng and nScrub
05. 08. 2020 Events, NetEye, Webinar
SAVE THE DATE – Virtual NetEye User Group 2020
14. 07. 2020 Events, Webinar
Network Monitoring in High Speed Networks
14. 11. 2019 Events, NetEye
What a wonderful event!
See All

Related Content

Tags: , , , ,

29. 12. 2024 Log-SIEM, NetEye

How to Configure Kibana to Use a Proxy Server with a Certificate via the NODE_EXTRA_CA_CERTS Variable

When using Kibana in environments that require a proxy to reach external services, you might encounter issues with unrecognized SSL certificates. Specifically, if the proxy is exposed with its own certificate and acts as an SSL terminator, requests made by Read More
27. 12. 2024 APM, Development, Log-SIEM, NetEye

Elastic Universal Profiling – Profiling native code

In a previous post we went through the configuration of Elastic Universal Profiling in NetEye, seeing how we can profile applications written in programming languages that do not compile to native code (for example Python, PHP, Perl, etc.) But what Read More
23. 12. 2024 APM, Development, Log-SIEM, NetEye

Continuous Profiling with NetEye – Elastic Universal Profiling

Elastic 8.16, which comes with NetEye 4.39, made Elastic Universal Profiling generally available for self-hosted installations. This means that NetEye SIEM installations will now be able to take advantage of the continuous profiling solution by Elastic. In this blog post Read More
20. 12. 2024 Atlassian, NetEye, Service Management

Managing Alerts with JSM: Focus on Incident Management (Part 2)

In the first part of this series, we explored how Jira Service Management (JSM) helps streamline Incident Management, aligning with ITIL v4 best practices. Incident Management aims to restore normal service operation as quickly as possible after a disruption, ensuring Read More
20. 12. 2024 Automation, Development, NetEye

When Less is More: NetEye Update and Upgrade Checkpoints

Hello everyone! Today, I'd like to briefly discuss an improvement to the update and upgrade procedures that we've started to adopt with NetEye 4.39! What we wanted to improve One aspect that made quite an impact was that whenever the Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

Search by technology

Contact

Contact us
Serviceportal

Archive