09. 11. 2009 Arianna Cunaccia NetEye

Intrusion Detection con Snort, leader per la Gartner

Snort, sistema open source di network intrusion prevention sviluppato salla Sourcefire, è il più utilizzato sistema IDS/IPS a livello internazionale.

Nel Magic Quadrant Network Intrusion Prevention System della Gartner, Sourcefire si posiziona tra i leaders in base all’abilità di esecuzione e completezza di visione.

I principali punti di forza di Sourcefire, elencati dalla Gartner, sono risultati essere:

  • Real time Network awareness e real time user awareness
  • Utilizzo di Snort come motore di intrusion detection
  • Visibilità di ciò che sta all’interno dei rules (workflow customizzabili, supporto tecnico avanzato)
  • Elevata flessibilità e scalabilità

Anche in NetEye abbiamo integrato già da tempo Snort come network detection system e nell’arco del prossimo anno prevediamo di migliorare e potenziare ulteriormente il modulo di Security management per rispondere alla crescente richiesta di sicurezza da parte dei nostri clienti.

Arianna Cunaccia

Arianna Cunaccia

Author

Arianna Cunaccia

Latest posts by Arianna Cunaccia

27. 10. 2020 Events
NetEye User Group 2020
27. 10. 2020 Webinar
Cyber Security with ntopng and nScrub
05. 08. 2020 Events, NetEye, Webinar
SAVE THE DATE – Virtual NetEye User Group 2020
14. 07. 2020 Events, Webinar
Network Monitoring in High Speed Networks
14. 11. 2019 Events, NetEye
What a wonderful event!
See All

Related Content

Tags: , , , ,

22. 11. 2024 Atlassian, Service Management

Managing Alerts with JSM: Focus on Incident Management – Part 1

Alerts are critical signals that demand immediate attention to minimize disruptions and maintain smooth operations. Proactively managing alerts throughout their lifecycle is key to effective event-driven workflows, incident response, and business continuity. By leveraging alerting tools within Jira Service Management Read More
06. 11. 2024 AI, Log-SIEM, Machine Learning, NetEye

The New NetEye User Guide Search: From POC to Production

Hello everyone! As you may remember, a topic I like to discuss a lot on this blog is the Proof of Concept (POC) about how we could enhance search within our online NetEye User Guide. Well, we're happy to share Read More
24. 10. 2024 Log Management, Log-SIEM

Categories of documents – create more namespaces within an agent’s environment

In the ever-evolving landscape of IT monitoring and management, the ability to efficiently handle multi-dimensional namespaces is crucial. Within NetEye, Log-SIEM (Elastic), provides a comprehensive solution for managing the single namespace dimension with the namespace of a data_stream. This blog Read More
02. 10. 2024 Log Management, Log-SIEM, Machine Learning, NetEye

Perform KNN Classification Using Elasticsearch

Hey everyone! We played around a bit last time with our radar data to build a model that we could train outside Elasticsearch, loading it through Eland and then applying it using an ingest pipeline. But since our data is Read More
11. 09. 2024 Contribution, Development, DevOps

Ansible Development, Part 1: Building an Execution Environment

Right now, at Würth Phoenix, we are investing in automating most of our operations using Ansible. You're probably already familiar with what Ansible does, but to summarize, Ansible is an open-source, command-line IT automation application written in Python. I've talked Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

Search by technology

Contact

Contact us
Serviceportal

Archive