iQSol new version of SIEM solution LogApp OED-ohling, published 05 March 2013. The iQSol GmbH has released the new version of its security solution LogApp. LogApp is a log archiving system and a security information & event management (SIEM) solution. The new version 2.2 expanded Windows file integrity monitoring and an enterprise reporting server. Furthermore Messaging server has its integrated iQSol alert, an enterprise alerting system for administrators. LogApp 2.2 supports hashbasiertes file integrity monitoring. New, modified and deleted files will this identify of haschen based comparisons and reported.
You can create precise audit trails over black and whitelisting. The monitoring can be performed daily or to specific days of the week. Hashbasiertes file integrity monitoring is including PCI-kompliant. With the enterprise reporting server are the administrators from all possibilities of MS SQL Reporting Services for a comprehensive and detailed reporting to the Available. Pre-built reports provide a quick basic reporting. Custom reports can be added at any time and existing reports adapted to the specific reporting requirements. The performance could be improved substantially through the revision of the archiving.
Nightly archiving ensures a reduction of the amount of data to a user friendly level. LogApp 2.2 is as an appliance solution or as a virtual machine on VMWare and Hyper-V, as well as app for Android and iOS available. LogApp LogApp appliance solution collects all the events from Windows and Linux systems and network devices and evaluates them. LogApp works with agents and recognizes the relationships in real time. The agents can receive syslog messages from network devices of all kinds and forward it to the LogApp. There are three different Honeypotdienste as an additional data source available with HoneyApps. Events at the LogApp are sent as reliable in case of an attack or virus in the internal network. The correlation engine the LogApp analyzes all incoming events and generates an alarm when security incidents. The correlation can be done automatically based on customizable rules or also. All events that register the LogAgents and HoneyApps, are tamper-proof archived immediately on the LogApp or on a connected network share. Acute incidents, a safe and quickest possible flow of information is a crucial factor that ensures the alert messaging server. The alert messaging server is a fully customizable Enterprise alerting system for administrators in high-availability environments. In the event of a fault, the competent technician group is notified within seconds. In combination with a comprehensive monitoring solution he can send out alert system-relevant alerts via email, SMS and voice call Messaging server. More information about the two products/solutions. IQSol about the iQSol GmbH is an independent manufacturer for solutions in the area of corporate alarm and log management. The LogApp SIEM solution closes the gap in log archiving, log management and event correlation in real time. With the honeypot module developed by iQSol companies protect best Trojans and BOT systems. The iQSol specialists have many years of experience from many IT audits and have comprehensive knowledge of common systems and security management solutions.