|
|
 |
[Software] - GFI EventsManager 7.1 Build 20070328 |
 |
|
GFI EventsManager will collect information from all devices which are using Windows event logs, W3C, and Syslog and applies the best rules and filtering in the industry to identify key data. This allows you to track when staff swipe their fob, pick up the phone to call home, turn on their PC, what they do on their PC and which files they access during their work day. GFI EventsManager also provides you with real-time alerting when critical events arise and suggests remedial action.
Here are some key features of "GFI EventsManager":
· Network-wide analysis of event logs made easy
As a network administrator, you have experienced the cryptic and voluminous logs that make log analysis a daunting process. GFI EventsManager is a log processing solution that provides network-wide control and management of Windows event logs, W3C logs, and Syslog events generated by your network sources. GFI EventsManager includes an intelligent event processor which processes logs and presents information in a centralized, easy and user-friendly fashion. View screenshot.
· "Translates" cryptic windows events
Cryptic logs make log analysis a lengthy process. GFI EventsManager “translates” the often cryptic event descriptions to clear, concise explanations and suggestions for action. View screenshot.
· Centralized event logging
Event logs are constantly and automatically generated by a user or by an automatic/background process and logs are often stored in disparate locations. GFI EventsManager stores all captured event logs into one SQL database that may also reside remotely. You may also configure scheduled backups of your event logs. View screenshot.
· High performance scanning engine
GFI EventsManager incorporates a totally re-designed event scanning engine that is fine-tuned for maximum scanning performance. Tests demonstrate that it is able to scan and collect up to 6 million events/hr. Furthermore, its plug-in based methodology allows additional features and modules to be integrated without interfering with existing code. View screenshot.
· Real-time alerts
GFI EventsManager can send you alerts when key events or intrusions are detected. You can trigger actions such as scripts or send an alert to one or more people by email, network messages, and SMS notifications sent through an email-to-SMS gateway or service. View screenshot.
· Extended event log support
GFI EventsManager processes various event log types including Windows event logs, Syslog events, and W3C event logs. This allows you to collect more data from the different hardware and software systems that are most commonly available on a typical corporate network. View screenshot.
· Rule-based event log management
GFI EventsManager ships with a pre-configured set of log processing rules that allow you to filter and classify events that satisfy particular conditions. You can run these default rules without performing any configuration or you can choose to customize these rules or create tailored ones that suite your network infrastructure. View screenshot.
· Advanced event filtering features
GFI EventsManager’s powerful filtering sieves through the recorded event logs and allows you to browse the required events without deleting any records from your database backend. You may also selectively highlight specific events using a color or the integrated event finder tool. View screenshot.
· Event log scanning profiles
Scanning profiles allow you to configure the set of event log monitoring rules that will be applied to a specific computer or to a group of computers and provide a centralized way of tuning event log processing rules. You can also setup a set of rules that only apply to workstations in a particular department. You may also create separate complementary profiles that provide additional and more specialized event log rules on a computer by computer basis. View screenshot.
· View reports on key security information happening on your network
GFI EventsManager reporter enables you to identify security trends. Use its standard reports – which you can customize – or create custom reports from scratch.
· Remove “noise” or untrivial events that make up a large ratio of all security events
· Real-time 24 x 7 x 365 day monitoring and alerting
· Graphically monitor the status of GFI EventsManager and your network through the built-in status monitor
· Report scheduling and automated distribution via email.
Limitations:
· The download is a FULL version that times out after 10 days, unless you enter the 30-day eval key or the full purchased license key
What's New in This Release:
· Improved reliability: This new add-on does not require a target SQL Server to be available during events data transfer since data is transferred from source to destination as a binary file. In addition the file export/import system is equipped with an algorithm which checks whether the data transfer has been successfully completed or not.
· Database backup capabilities: The WAN Connector & Database Operations add-on allows users to:
· Backup or move events to an offline database.
· Export events data to compressed binary files. These binary files not only consume very little storage space but can also be optionally encrypted for security and legal compliancy reason.
· Greater flexibility:
· The WAN Connector & Database Operations add-on is not limited to one destination database backend. Users can export events to multiple binary files as well as specify the destination folder(s) where these files will be located.
· The events data export and import functions are carried out in 2 distinct operations/sessions. After an export to file operation has been completed, users can choose to immediately proceed with the import operation or else schedule this activity for later.
· The WAN Connector & Database Operations add-on allows the configuration of default/custom filters that define which data will be exported or imported from a backup file.
· Wider compatibility: The WAN Connector & Database Operations add-on is no longer dependent on Data Transformation Services technology to transfer events data from a remote site to a central location. Events data is now exported to a compressed binary file, and can be converted/imported to any required/supported database format (not necessarily SQL Server format) at destination.
· Higher savings:
· Less Storage space – As opposed to a database, binary files require less physical storage space. The WAN Connector & Database Operations add-on allows user to exports events to a compressed binary file which reduces events data storage requirements by 98%.
· Bandwidth – Since binary files are smaller in size than database files, less bandwidth is require to transfer events data over the WAN...
Download
|
|
 |
|
 |
|
|
