Activeworx Snort Management Center - SMC

Activeworx SMC, or Snort Management Center, is a robust, user friendly and cost effective solution for effective management of complex Snort installations. SMC gives users a greater understanding of the reality of their security posture with easy and immediate access to packet headers and payloads, event correlation, and access to on-line intrusion identification information from within the interface.


Visualize intrusion information with easy to understand graphs, charts, geographical maps, and event diagrams, and a comprehensive reporting engine. Quickly view, disable or set suppression for a single rule on a single sensor, or to deploy a rule change to all Snort sensors from a centralized interface, while viewing information about an event that is currently triggering, within the same console view.


Tight integration with the Snort IDS back-end database allows SMC to collect information from existingSnort IDS installations with no modification of the original database schema. Whether it’s a new installation or one that has been in place for years, there is no more complete, less intrusive, or more cost effective centralized management console for Snort.

Download
Produktdatenblatt Activeworx Snort
Datenblatt_Activeworx - Snort Management[...]
PDF-Dokument [108.1 KB]

 

 

Weiterführende Informationen und Downloads:

 

Produktdownload

Installationsanleitungen und Quick-Start-Guide

Dokumentationen und Whitepapers

 

 

Event Management for Snort IDS
Snort® IDS is the most widely used intrusion detection system today, and most of the management tools available are limited, expensive, or difficult to use. Activeworx® Snort Management Center (SMC), based on the full blown Security Information Management (SIM) tool Activeworx Security Center (ASC) is a complete solution to handle all your Snort® policies and events. SMC is designed to provide a low cost (starting at less then $400 per sensor) and user friendly solution to manage and monitor all of your Snort®  events, as well as keep your Snort policies and rules up-to-date on all your sensors.

 

Enhanced Visualization features
With a combination of easy to understand graphs, charts, geographical maps, and event diagrams, as well as the ability to look at packet headers and payload data, SMC provides all the tools necessary for an IDS admin to focus on what’s important: quickly identifying and responding to interesting events.

 

Tight Integration with Snort®
Activeworx SMC integrates tightly with the Snort®  IDS event database to provide high valued information from your existing Snort®  IDS installations, without modifying the original database schema. Whether it’s a new Snort®  installation or one that has been in place for years with 10's of millions of events, there is no other complete, less intrusive, and less expensive centralized management console for Snort.

 

Large Snort® Installations
If you have a large IDS install base, such as twenty or more Snort®  sensors, please take a look at Activeworx Security Center, which provides a complete SIM solution to monitor virtually any security device, and can scale well beyond SMC. ASC also provides powerful features such as the ability to centralize hundreds of Snort® sensors on hundreds of databases and centralize the events into a common view while filtering out the noise with it's correlation engine and alerting on real events of interest.

 

Complete Snort® Solution
With Activeworx SMC you can enjoy an affordable solution that provides unprecedented features for managing Snort such as customizable dashboards, detailed reporting, interactive graphs, and event relationship diagrams. Complete IDS policy management including Snort policy updates and proactively pushing new Snort policies to all your sensors from a central location is another added benefit of SMC, as well as countless other ways to view, analyze, and manage your snort events. Begin your Security Information Management where it matters most, intrusions. Then round off your security management by adding support for Vulnerability Scans, Windows Events, Firewall logs, Unix-based servers, enterprise applications, and many more log types and formats by upgrading to Activeworx Security Center when you are ready.

 

Policy Manager for Snort IDS
Activeworx SMC includes IDS Policy Manager. IDS Policy Manager is the original Snort policy manager and has been the de facto standard for manging Snort® policies on Windows since it's initial release in 2000. 

The integration of IDS Policy Manager into a Snort®  Event Management solution not only provides the ability to view, correlate, and report on Snort®  events, but it adds seamless IDS rule management and deployment. Administrators now have the ability to quickly view, disable or set suppression for a single rule on a single sensor, or to deploy a rule change to all Snort®  sensors while viewing information about an event that is currently triggering, all within the same console view. IDS Policy Manager adds easy updates and deployment of Snort rules to the familiar Activeworx event management interface for more proactive management of all Snort® IDS installations.