Avatar of D_wathi
D_wathi
Flag for India asked on

network monitoring tool and application scanning tool for on premise

Dear Experts

We have application servers hosted on-premise, the servers are behind the firewall.  users who access the application server from external network have to pass though the VPN network. I am looking for the network monitoring tool and also vulnerable scanning tool for web application server. I found following New Relic network monitoring tool and Qualys Security solution but these are cloud based. Please suggest for on premise deployment and suggestions please.
Thanks in advance.
Network Management* Monitoring toolNetwork SecurityApplication Servers

Avatar of undefined
Last Comment
masnrock

8/22/2022 - Mon
ASKER CERTIFIED SOLUTION
Ibrahim Kasabri

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
David Favor

Describe your App a bit + your security concerns + OS where App runs.
SOLUTION
David Favor

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
Soulja

Observium is a decent option.

http://www.observium.org/
SOLUTION
Log in to continue reading
Log In
Sign up - Free for 7 days
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.
madunix

You can use Kali Linux built specifically to be used by penetration testers. It comes prepackaged with different security tools
• Nmap
• Wireshark
• Metasploit Framework
• John the Ripper
• Aircrack-ng
• Burp Suite
• Ettercap
• OWASP ZAP
• THC Hydra
• Maltego
• sqlmap
• Social Engineer Toolkit

For monitoring you can use PRTG or Nagios
https://www.ittsystems.com/prtg-vs-nagios/
All of life is about relationships, and EE has made a viirtual community a real community. It lifts everyone's boat
William Peck
D_wathi

ASKER
Thank you very much. We have windows AD, IIS , MSSQL, linux servers, apache, mysql, php . will PRTG provides audit logs please let me know.
Ibrahim Kasabri

PRTG has many features one of those is Active Directory Event Auditing with PRTG
https://www.paessler.com/active-directory-auditing

have a quick look for the main PRTG features on this link
https://www.paessler.com/prtg/features
masnrock

You could also use Rapid7's InsightVM for network/vulnerability scanning, which may cost you more than some of the other products here. Nessus would be a very costly proposition. Rapid7 does have a separate tool for app scanning, but I'd recommend looking at the products others have listed here first.
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.