EventSentry
Solution de surveillance SIEM hybride de journaux d'événements et en temps réel
5 /5 (20 avis) Donnez votre avis !EventSentry - Présentation
Description du logiciel EventSentry
EventSentry est une solution hybride SIEM (gestion des informations et des événements de sécurité) qui offre aux entreprises une vaste gamme d'outils qui comprend le suivi du journal d'événements, le reporting, la surveillance de l'état de santé, la gestion de la conformité, le monitoring réseau, la surveillance de l'environnement, la consolidation des données, l'intégration Active Directory, etc. La plateforme combine la surveillance des journaux d'événements en temps réel avec les suivis en matière d'état, d'environnement et de monitoring réseau en vue de fournir aux entreprises une vue complète de leurs serveurs et de leurs terminaux.
La fonctionnalité de surveillance des journaux d'événements dans EventSentry permet aux utilisateurs de suivre les événements en temps réel, de filtrer les messages en fonction de paramètres personnalisés et de les envoyer aux personnes ou aux endroits concernés. La plateforme facilite la mise en correspondance des événements en fonction de propriétés définies telles que la source, la catégorie, le message, l'ID, etc., ainsi que les recherches aléatoires et les correspondances régulières. EventSentry peut être utilisé pour surveiller l'état du système en temps réel et suivre le matériel, la disponibilité, les logiciels, les applications, les modifications de fichier, les processus, etc. Les autres fonctionnalités d'EventSentry comprennent : surveillance de l'environnement, rapports web, gestion de la conformité, notifications, alertes en temps réel et consolidation des journaux.
EventSentry - Présentation
Prix
Types de licence
EventSentry - Fonctionnalités
Médias
EventSentry - Avis
EventSentry - Avis
Complete Tool for basic and for professional setup
First days of you I felt a little lost, then I use the help center and the videos that the company has and start working with it perfectly. They have an AWESOME customer care. They will reply your questions at their forum real quick.
Great Customer Support!
EventSentry is used here to collate event logs, spot errors and trends in our network and security issues that need to be re-mediated. we've found it to be very useful in root cause analysis and troubleshooting network issues. the support staff are amazing and cannot be recommended enough!
Great! This is what you were looking for. You will be delight AND relieved.
After one year of product use: Excellent product and great support
The company our IT department is working for, is a small to mid size company (~550 users).
Our team consists of two system engineers, which makes it challenging to always keep track of changes and events on our Windows servers.
We invested some time in searching for a suitable SIEM product for Microsoft Windows eventlog consolidation and event notification.
After we found other solutions to be either overkill/pushy or overpriced, we decided to evaluate EventSentry.
The installation was straight forward and intuitive.
It came with several pre-configured Windows event log packages to filter out unrelevant event log noise and to give you a quick clue about how the system works:
Define...
..which event log / source to monitor
..the IDs you are interested in
..actions to take if the event occurs
Besides this important process of constantly monitoring the Windows event logs of all our Windows servers we soon found out that theres more for us:
- Monitor changes to important system files and directories
- Monitor MS Active Directory
- Monitor software installation and changes
- Consolidate custom log files like for Microsoft Exchange
- and so much more
To be honest, it took some time and testing until we had EventSentry configured to track all the relevant edges of our infrastructure.
But during that time it was always a pleasure to work with the not-buggy and intuitive GUI.
Also, we learned to love the Webinterface (WebReports) which displays all kind of status information and lets us search and filter through all the event logs and software products we use.
After 2-3 months EventSentry totally became a part of our daily work life, running stable and reliable.
This product is a valuable addition for our security roadmap, as it gives us the possibility to verify its effectiveness and automate counter measures.
And theres still a lot to discover and utilize (we currently only monitor Microsoft Windows systems).
Notable is also the customer support and documentation. Communication was always easy and directly.
A bug I reported was quickly fixed and even a feature request I sent in has been implemented within a very short time.
The documentation is comprehensive and useful.
Trialing the software was easy and seamlessly without notable impact on our servers, so you should defenetly give this a try!
WARNING - Your tedious event logs will be transformed into situational awareness data.
Did a WebEx with my supervisor to demo EventSentry and show how I’m using it here in our East Coast office. Whenever my boss asked a question, I could display info and immediately provide an answer with just a few mouse clicks. Simple, fast, and on-point. He was very impressed.
Installation of upgrades has been smooth and easy. I don't worry that an upgrade will cause loss of my event log data.
Excellent documentation of EventSentry installation procedures, use of features, and troubleshooing methods.
My company is starting to purchase more licenses and expand use of EventSentry to more of our systems. It's exactly what we need for event log consolidation, auditing, and system management.
Comparatif des alternatives : note globale
Comparer avec les alternatives
Complete Tool for basic and for professional setup
Avantages
I used this tool for almost 2 years now. Its great for both, for the lazy sysadmin that want to do some clicks and have a monitor tools working and for the one (like me) that want to monitor almost everything even things that are not normal or out of any standard list. Great tool for small/medium ar super big windows and ad networks.
Inconvénients
I would love a little more support for monitoring linux severs, despite it already has a lot of monitoring for common distros like pfsense
Great Customer Support!
EventSentry is used here to collate event logs, spot errors and trends in our network and security issues that need to be re-mediated. we've found it to be very useful in root cause analysis and troubleshooting network issues. the support staff are amazing and cannot be recommended enough!
Avantages
The software itself is very granular and provides numerous customization and optimization options, the limits are endless!
Inconvénients
the only drawback is a big learning curve but this is mainly due to the level of technical capabilities the software has, this is also not a big issue as their support staff are some of the most knowledgeable i have ever personally experienced.
Great! This is what you were looking for. You will be delight AND relieved.
Avantages
Manage your deltas? This is it.
Why are you looking at all of those log files? Short answer is you probably aren't. That's not good.
Get smart. Use ES and just look at the deltas.
All seriousness aside, this tool will organize your log events life.
Inconvénients
Be realistic, once you introduce this software into your routine you would honestly have a hard time complaining about what it might NOT do.
After one year of product use: Excellent product and great support
The company our IT department is working for, is a small to mid size company (~550 users).
Our team consists of two system engineers, which makes it challenging to always keep track of changes and events on our Windows servers.
We invested some time in searching for a suitable SIEM product for Microsoft Windows eventlog consolidation and event notification.
After we found other solutions to be either overkill/pushy or overpriced, we decided to evaluate EventSentry.
The installation was straight forward and intuitive.
It came with several pre-configured Windows event log packages to filter out unrelevant event log noise and to give you a quick clue about how the system works:
Define...
..which event log / source to monitor
..the IDs you are interested in
..actions to take if the event occurs
Besides this important process of constantly monitoring the Windows event logs of all our Windows servers we soon found out that theres more for us:
- Monitor changes to important system files and directories
- Monitor MS Active Directory
- Monitor software installation and changes
- Consolidate custom log files like for Microsoft Exchange
- and so much more
To be honest, it took some time and testing until we had EventSentry configured to track all the relevant edges of our infrastructure.
But during that time it was always a pleasure to work with the not-buggy and intuitive GUI.
Also, we learned to love the Webinterface (WebReports) which displays all kind of status information and lets us search and filter through all the event logs and software products we use.
After 2-3 months EventSentry totally became a part of our daily work life, running stable and reliable.
This product is a valuable addition for our security roadmap, as it gives us the possibility to verify its effectiveness and automate counter measures.
And theres still a lot to discover and utilize (we currently only monitor Microsoft Windows systems).
Notable is also the customer support and documentation. Communication was always easy and directly.
A bug I reported was quickly fixed and even a feature request I sent in has been implemented within a very short time.
The documentation is comprehensive and useful.
Trialing the software was easy and seamlessly without notable impact on our servers, so you should defenetly give this a try!
Avantages
The flexibility and range of use
Inconvénients
Nothing notable so far
WARNING - Your tedious event logs will be transformed into situational awareness data.
Did a WebEx with my supervisor to demo EventSentry and show how I’m using it here in our East Coast office. Whenever my boss asked a question, I could display info and immediately provide an answer with just a few mouse clicks. Simple, fast, and on-point. He was very impressed.
Installation of upgrades has been smooth and easy. I don't worry that an upgrade will cause loss of my event log data.
Excellent documentation of EventSentry installation procedures, use of features, and troubleshooing methods.
My company is starting to purchase more licenses and expand use of EventSentry to more of our systems. It's exactly what we need for event log consolidation, auditing, and system management.
Avantages
I use several tools for management of computers and networks. EventSentry stands out with its clean, colorful, easy-to-use interface.
Set up a web report/data view you need and bookmark it. Quickly surf through browser tabs to view exactly what you're looking for. Identify a problem, assess the situation, then click on the data/graph to drill down for more detail.
EventSentry Tech Support staff is outstanding. I've contacted them several times by phone and email. Prompt response and friendly customer service. Most important - they quickly grasped the problem and clearly communicated how to troubleshoot and fix. Stayed with me until problem solved.
Inconvénients
So far I haven't found anything that merits concern or criticism.
Comparatif des alternatives : recommandation utilisateur
Comparer avec les alternatives
EventSentry - Prix
EventSentry - Prix
Comparatif des alternatives : rapport qualité-prix
Comparer avec les alternatives
EventSentry - Fonctionnalités
EventSentry - Fonctionnalités
Comparatif des alternatives : note sur les fonctionnalités
Comparer avec les alternatives
Catégories
Catégories
EventSentry - FAQ
EventSentry - FAQ
Voici quelques-unes des questions fréquentes sur EventSentry.
Q. Quels sont les types de licence disponibles pour EventSentry ?
Types de licences disponibles pour EventSentry :
À partir de: 85,00 $US
Type de licence: Licence unique, Abonnement
Essai gratuit: Disponible
Q. Quelles sont les principales fonctionnalités du logiciel EventSentry ?
Nous n'avons pas d'informations sur les fonctionnalités de EventSentry.
Q. Qui utilise EventSentry ?
Utilisateurs habituels du logiciel EventSentry :
Grandes entreprises, Entreprises de taille moyenne
Q. Dans quelles langues EventSentry est-il disponible ?
Langues dans lesquelles EventSentry est disponible :
anglais
Q. Quels sont les types de licence disponibles pour EventSentry ?
Types de licences disponibles pour EventSentry:
Licence unique, Abonnement
Q. EventSentry prend-il en charge les appareils mobiles ?
Nous n'avons pas d'informations sur les appareils pris en charge par EventSentry.
Q. Avec quelles applications EventSentry peut-il s'intégrer ?
Nous n'avons pas d'informations sur les intégrations offertes par EventSentry.
Q. Quelles sont les ressources d'aide disponibles pour EventSentry ?
Ressources d'aide disponibles pour EventSentry :
Support téléphonique, Support en ligne, FAQ, Base de connaissances, Tutoriels vidéo
First days of you I felt a little lost, then I use the help center and the videos that the company has and start working with it perfectly. They have an AWESOME customer care. They will reply your questions at their forum real quick.