?
Solved

Event Log Monitoring / Port Monitoring Software?

Posted on 2007-11-17
1
Medium Priority
?
339 Views
Last Modified: 2010-04-12
I am looking for useful Event Log Monitoring software, as well as any software tools to scan open ports on our web server running Microsoft Server 2003 R2 and SQL Standard 2005.  We want to monitor hack attempts as well as make the server as tight as possible.
0
Comment
Question by:cleversley
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 8

Accepted Solution

by:
deadite earned 2000 total points
ID: 20354514
For scanners:
http://www.nessus.org/download/
http://insecure.org/nmap/

For Log Monitoring, I know GFI offers a solution:
http://www.gfi.com/lanselm/


If you want to monitor, check out some IDS software or hardware.  You can download snort for free:
http://www.snort.org/

Here's some best practice guides from MS:
http://technet2.microsoft.com/windowsserver/en/library/ace052a0-a713-423e-8e8c-4bf198f597b81033.mspx?mfr=true
http://www.microsoft.com/technet/security/prodtech/iis.mspx
http://technet.microsoft.com/en-us/sqlserver/bb331769.aspx

If you really want to go out, you can get a Cisco Engineer in to switch you all over to Cisco equipment.  They also offer an IDS, and they have a complete logging solution that will gather logs and notify any attacks on the network.  If you go that route, you're best off getting an engineer unless you really know your stuff.
0

Featured Post

Bringing Advanced Authentication to the SMB Market

WatchGuard announces the acquisition of advanced authentication provider, Datablink, with one mission – to bring secure authentication to SMB, mid-market, and distributed enterprises with a cloud-based solution, ideal for resale via their established channel & MSSP community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I've been an avid user and supporter of Malwarebytes Premium Version 2.x for years. It's an excellent product that runs alongside just about any Anti-Virus application without issues. It seems to have an uncanny ability to pick up many things that A…
One of the biggest threats facing all high-value targets are APT's.  These threats include sophisticated tactics that "often starts with mapping human organization and collecting intelligence on employees, who are nowadays a weaker link than network…
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…
Suggested Courses

800 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question