RSS Alerts

Share

More services

Related Stories

  • Like falling off a log
    System logs haven’t really changed since the days of the IBM 360, but the need to manage them effectively for security purposes certainly has. Danny Bradbury finds out why log management is so important – and why we aren’t doing it properly
  • Like Falling Off a Log
    System logs haven’t really changed since the days of the IBM 360, but the need to manage them effectively for security purposes certainly has. Danny Bradbury finds out why log management is so important – and why we aren’t doing it properly
  • Comment: Combating cyber crime with protective monitoring
    Ross Brewer of LogRhythm explains how compliance with protective monitoring guidelines in the Good Practice Guide (GPG) 13 should be the foundation of all good security information event management (SIEM) policies
  • Comment: Watch out – cybercriminals are about
    It’s a dangerous online world, and you need to stay alert if you want to keep safe from scammers hell bent on stealing your credentials. Amit Klein, CTO of Trusteer, looks at the tactics cybercriminals are using to dupe us into revealing more than we intend to, and gives seven defences to help keep our guards up.
  • An Olympic effort to secure the Games
    Managing the security of the 2010 Olympic Games in Vancouver is no mean feat. Danny Bradbury went behind the scenes at the Olympic site to talk to the people who are tasked with ensuring the event goes smoothly

Top 5 Stories

News

Ipswitch launches log management suite

17 March 2010

Ipswitch has launched the WhatsUp Event Log Management Suite, including its newly acquired WhatsUp Event Rover 3.0, two tools that it hopes will make it easier for customers to manage their networks by logging security events, while protecting files for forensic investigations.

The Ipswitch event log management suite contains four tools. The Event Archiver automatically collects events and stores them securely. The Event Analyst module enables log analyst personnel to identify trends in logged events, while generating compliance reports for auditors. The WhatsUp Event Alarm focuses on immediate alerts for events that require the attention of IT staff. It monitors the system and notifies assigned personnel when pre-identified conditions are met. Finally, the WhatsUp Event Rover deals with on-the-fly forensics and log data mining.

Event Rover 3.0 came from Ipswitch's acquisition of Dorian Software in January. The product enables users to recover corrupt EVTX files without modifying the files and ruining or tampering with potentially valuable forensic information, Ipswitch said.

EVTX is a format used by newer Windows systems such as Vista and Windows 7. However, older versions use the EVT format. The event logger also includes LogRefiner, which enables the suite to deal with both.
 

This article is featured in:
IT Forensics

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012