EventTracker is the most comprehensive Security Information and Event Management (SIEM) solution available in the market today. It automates the collection and storage of all enterprise event logs and combines real-time Log Management with powerful Configuration and Change Auditing in one turnkey software package.
EventTracker provides a unique combination of capabilities, including:
- Track insert/removal on servers and workstations
- Record all activity (file writes/copies)
- Disable according to predefined policy
- Take action first and analyze later
- Run commands from the console on any remote system
- Store and run actions automatically on any local Windows system
- Easily report on all event data, scheduled or ad-hoc
- Create and generate meaningful reports
- Use over 2000 pre-defined report templates for security, compliance and operations
- Easily and quickly search and analyze all event data in real-time or as part of a post-incident forensics process
- Quickly search through terabytes of log data using a Google-like search interface
- Real-time alerts for critical events such as security breaches or performance problems
- Support for an unlimited number of rule-based alerts with configurable event criteria
- Support for event-fired automatic actions for custom defined events
- Automated monitoring of unusual activities and anomalies using dynamic statistical and behavioral correlation
- An extra "set of eyes" as an additional early warning system
- Change auditing and configuration assessment provides a more complete picture of your IT infrastructure for better security and availability
Virtual Infrastructure Monitoring
EventTracker provides the most complete support for managing the virtual enterprise. It monitors all layers of the virtual infrastructure including:
- Hardware
- Hypervisors
- Virtualization management applications like vCenter
- Guest OS
- Applications
For a complete description of the EventTracker architecture, go to How It Works
