We help IT Professionals succeed at work.

network monitoring tool and application scanning tool for on premise

302 Views
2 Endorsements
Last Modified: 2019-06-19
Dear Experts

We have application servers hosted on-premise, the servers are behind the firewall.  users who access the application server from external network have to pass though the VPN network. I am looking for the network monitoring tool and also vulnerable scanning tool for web application server. I found following New Relic network monitoring tool and Qualys Security solution but these are cloud based. Please suggest for on premise deployment and suggestions please.
Thanks in advance.
Comment
Watch Question

Infrastructure admin
CERTIFIED EXPERT
Distinguished Expert 2019
Commented:
This problem has been solved!
(Unlock this solution with a 7-day Free Trial)
UNLOCK SOLUTION
David FavorFractional CTO
CERTIFIED EXPERT
Distinguished Expert 2019

Commented:
Describe your App a bit + your security concerns + OS where App runs.
David FavorFractional CTO
CERTIFIED EXPERT
Distinguished Expert 2019
Commented:
This problem has been solved!
(Unlock this solution with a 7-day Free Trial)
UNLOCK SOLUTION
SouljaSr.Net.Eng
CERTIFIED EXPERT
Top Expert 2011

Commented:
Observium is a decent option.

http://www.observium.org/
CERTIFIED EXPERT
Commented:
This problem has been solved!
(Unlock this solution with a 7-day Free Trial)
UNLOCK SOLUTION
madunixExecutive Information Technology Director
CERTIFIED EXPERT
Most Valuable Expert 2019

Commented:
You can use Kali Linux built specifically to be used by penetration testers. It comes prepackaged with different security tools
• Nmap
• Wireshark
• Metasploit Framework
• John the Ripper
• Aircrack-ng
• Burp Suite
• Ettercap
• OWASP ZAP
• THC Hydra
• Maltego
• sqlmap
• Social Engineer Toolkit

For monitoring you can use PRTG or Nagios
https://www.ittsystems.com/prtg-vs-nagios/

Author

Commented:
Thank you very much. We have windows AD, IIS , MSSQL, linux servers, apache, mysql, php . will PRTG provides audit logs please let me know.
Ibrahim KasabriInfrastructure admin
CERTIFIED EXPERT
Distinguished Expert 2019

Commented:
PRTG has many features one of those is Active Directory Event Auditing with PRTG
https://www.paessler.com/active-directory-auditing

have a quick look for the main PRTG features on this link
https://www.paessler.com/prtg/features
CERTIFIED EXPERT
Distinguished Expert 2019

Commented:
You could also use Rapid7's InsightVM for network/vulnerability scanning, which may cost you more than some of the other products here. Nessus would be a very costly proposition. Rapid7 does have a separate tool for app scanning, but I'd recommend looking at the products others have listed here first.