Directory
Host IDS
A Host IDS monitors host and server event/sys logs from multiple sources for suspicious activity. Host IDS are best placed to detect computer misuse from trusted insiders and those who have already infiltrated your network. Okay, IMHO what I have just described is an event log manager, a true Host IDS will apply some signature analysis across multiple events/logs and/or time, heuristical profiling is another useful way to spot nefarious activity. NOTE it is felt that this battle of terms with the vendor marketeers regarding what actually constitutes a Host IDS vs an event log manager has been lost. therefore a HIDS can be any of the above.
EMERALD eXpert-BSM
Visit the Product SiteEMERALD's eXpert-BSM Monitor is a host-based intrusion detection system that provides realtime security monitoring for critical application servers and workstations. eXpert-BSM provides comprehensive knowledge-base for detecting insider misuse, policy vio ...
AuditGUARD
Visit the Product SiteauditGUARD allows you to monitor who did what, when, where, and how. Features include Complete Audit Management: control and filter all of the information available to you. Continuous audit from all operating systems. Analysis of user actions and their ...
CA Host-based Intrusion Protection System
Visit the Product SiteCA Host-Based Intrusion Prevention System (CA HIPS) combines the protective power of five critical technologies— endpoint Firewall, Intrusion Detection, Intrusion Prevention, Operating System Security and Application Control capabilities—into one cent ...
Operations Manager 2007
Visit the Product SiteEnd-to-End Service Management In Operations Manager 2007, Microsoft has introduced or improved features such as Distributed Application monitoring, Synthetic Transactions, Client monitoring, SDM-based system and health models, and Agentless Exception Mon ...
NetIQ Security Manager Modules
Visit the Product Site
NetIQ Security Manager provides real–time monitoring of system changes and user activity, detection of threats and intrusions, security event management and correlation, log management and incident response automation—all with a single, integrated and ...
NetIQ Change Guardian for Active Directory
Visit the Product Site
With NetIQ Change Guardian for Active Directory, you know which changes are executed based on corporate policy, validate the success or failure of planned changes and capture the difference between authorized and unauthorized change activity. The Change G ...
NetIQ Change Guardian for Windows
Visit the Product Site
NetIQ Change Guardian for Windows gives you invaluable insight into the activities of, and changes implemented by, privileged-level users across your Windows systems, providing the visibility you need to protect your Windows environment, hosted data and a ...
NetIQ Change Guardian for Group Policy
Visit the Product Site
NetIQ Change Guardian for Group Policy minimizes the risks associated with Group Policy Object (GPO) change management and helps determine and document all authorized and unauthorized Group Policy changes to the live environment.
Group Policy is an ext ...
Third Brigade Deep Security
Visit the Product Site
Third Brigade Deep Security is server and application protection software that allows systems to become self-defending. It provides comprehensive, manageable protection for datacenters— including physical and virtualized servers, and cloud computing env ...
NetIQ Secure Configuration Manager
Visit the Product Site
NetIQ Secure Configuration Manager audits system configurations and compares them to corporate policies, previous snapshots, and/or other systems. It also leverages this configuration information to reliably identify vulnerabilities and exposures, using t ...
Sebek
Visit the Product SiteSebek is a data capture tool designed to capture the attackers activities on a honeypot, without the attacker (hopefully) knowing it. It has two components. The first is a client that runs on the honeypots, its purpose is to capture all of the attackers a ...
Trend Micro Deep Security
Visit the Product SiteDeep Security protects confidential data and critical applications to help prevent data breaches and ensure business continuity, while enabling compliance with important standards and regulations such as PCI, FISMA and HIPAA. Whether implemented as softwa ...