• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 761
  • Last Modified:

Intrusion detection systems

I need recommendation for Intrusion Detection system where it can report and tell you what files has been changed and/or lock it down and prevent changing.  I used Snort a while back and wonder if this is a good product or need any alternatives.
Please advice.
0
Tiras25
Asked:
Tiras25
  • 2
  • 2
3 Solutions
 
Kevin HaysIT AnalystCommented:
Well lots of people have probably used snort since it's open source.  You have winsnort also for windows if i'm not mistaking.

You should have a IPS along with the IDS to have a solid security foundation.  The rules you apply in the IDS goes a long way in making it more secure and detailed also.

There are also enterprise class IDS/IPS out there also, but for most snort is good.
0
 
Tiras25Author Commented:
Bystorm product.  Anyone heard of that?
http://www.bystorm.com/products-overview.html

====================
FileSure for Windows
FileSure for Windows leverages patent-pending technology that operates outside of native-Windows ACLs (Access Control Lists) to provide file access auditing, file access control, and data loss protection.
FileSure is a policy-based product (rules) that is easily configured and managed from a single location. FileSure complements your existing user and group permissions and eliminates the need for you to ever touch an ACL again!
0
 
pand0ra_usaCommented:
You are not necessarily looking for an IDS but a Integrity checker. Windows has one built in for Microsoft specific files called sigverif. If you are looking for a comprehensive application I've used 3rd Brigade in the past that installs an agent on each machine you want to monitor. It does anti virus, firewall, HIDS (detect and/or prevent), integrity checking, and log monitoring.
0
 
Tiras25Author Commented:
Interesting idea.  How 'comprehensive' app would be different than sigverif from MS.  Maybe that MS tool would be just enough for me.
0
 
pand0ra_usaCommented:
From an integrity checker standpoint, 3rd Brigade will verify any file or folder you define whereas sigverif.exe will only do windows files that have been singed by Microsoft.
0

Featured Post

Take Control of Web Hosting For Your Clients

As a web developer or IT admin, successfully managing multiple client accounts can be challenging. In this webinar we will look at the tools provided by Media Temple and Plesk to make managing your clients’ hosting easier.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now