EventTracker is a complete Security Information and Event Management (SIEM) solution that combines real-time Log Management with powerful Configuration and Change Auditing in one turnkey software package.
- Integrated, sophisticated collection layer
- Highly flexible agent-optional architecture
- Built in syslog, syslog ng and SNMP receivers
- Supports both UDP or TCP (guaranteed delivery) transport
- Encrypted transmission of events
- Highly scalable software-only Collection Point Architecture for modest deployments to large enterprise installations
- Easily deployed on multiple small machines or on single larger instances
- Supports virtualized environments, discrete hardware or a combination of both depending on customer requirements
- Provides an exhaustive set of Log Knowledge Packs contained in a framework that is easily extendable
- Enables end users to make sense of the many and often arcane logs
- An important and powerful tool in the hands of the system administrator
- Crucial for maximizing the value of event log management and analysis
- Ability to detect subtle clues across multiple systems and devices that a potential security breach is in progress
- Optimized and high performance event warehouse that is purpose-built for efficient storage and retrieval of event logs
- Reliably and efficiently archives event logs from across the enterprise without the need for any DBMS licenses or other overhead costs
- Collected events are compressed (over 90% compression ratio) and sealed with a SHA-1 signature to prevent potential tampering
- EventTracker User Interface places all log data at your fingertips
- Powerful Administrator Console where policy can be defined, reports run and analysis performed
- Web Portal provides a role-based browser interface where reports can be configured, run and reviewed and analysis performed
