Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



IDS: RE: Host Based IDS Recommendations?

RE: Host Based IDS Recommendations?

From: Ryan Finnesey <ryan.finnesey_at_corpdsg.com>
Date: Sat, 18 Oct 2003 22:58:01 -0400

Does anyone know if they offer service provider licensing?

Ryan

-----Original Message-----
From: Dmitri Smirnov [mailto:Dmitri.Smirnov_at_fusepoint.com]
Sent: Saturday, October 11, 2003 12:25 PM
To: Alvin Wong
Cc: focus-ids_at_securityfocus.com
Subject: RE: Host Based IDS Recommendations?

I'm very happy at the moment with Cisco Security Agent (Okena
StormWatch). Support Solaris and Windows.
I think Cisco promised Linux support in future.
Very like everything in this product except may be the idea to pay and
install the useless VMS CW2000...
I believe it is the best way/technology/product to detect and prevent
attacks.

Dmitri

On Oct 10, 2003, at 12:40 AM, Alvin Wong wrote:

> Hi,
>
> I would like to find out for Windows boxes if there are any
> recommendations for Host based IDS, i know that for unix there is
> AIDE, linux, tripwire. What are the solutions for Windows machines?
> Would running a software IDS that is capable of monitoring and
> protecting the file systems a la tripwire with signed hashes kept in
> removable media be sufficient? If there are, what are the usual
> suspects for host based IDS that is used prevalently in industry? I'm
> hoping for both free and commercial solutions
>
> Regards,
> Alvin
>
>
> ----------------------------------------------------------------------
> -

------------------------------------------------------------------------ 

---
Captus Networks IPS 4000
Intrusion Prevention and Traffic Shaping Technology to: 
 - Instantly Stop DoS/DDoS Attacks, Worms & Port Scans
 - Automatically Control P2P, IM and Spam Traffic
 - Precisely Define and Implement Network Security & Performance
Policies
FREE Vulnerability Assessment Toolkit - WhitePapers - Live Demo 
http://www.securityfocus.com/sponsor/CaptusNetworks_focus-ids_000101
------------------------------------------------------------------------
---
---------------------------------------------------------------------------
FREE Whitepaper: Better Management for Network Security
Looking for a better way to manage your IP security?
Learn how Solsoft can help you:
- Ensure robust IP security through policy-based management
- Make firewall, VPN, and NAT rules interoperable across heterogeneous
networks
- Quickly respond to network events from a central console
Download our FREE whitepaper at:
http://www.securityfocus.com/sponsor/Solsoft_focus-ids_031015 
---------------------------------------------------------------------------
Received on Oct 20 2003
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos