[32120] in resnet
Re: SIEM / Log monitoring options
daemon@ATHENA.MIT.EDU (Brian Gibson)
Fri May 26 11:51:43 2017
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="------------98AF6D15DFE22E1BA1149A91"
Content-Language: en-US
Message-ID: <91e1fd03-c817-f01a-033c-c454304a425d@wheatoncollege.edu>
Date: Fri, 26 May 2017 11:38:13 -0400
Reply-To: Resnet Forum <RESNET-L@listserv.nd.edu>
From: Brian Gibson <gibson_brian@WHEATONCOLLEGE.EDU>
To: RESNET-L@listserv.nd.edu
In-Reply-To: <BLUPR05MB232171E6850BD7E697B4E14CDFF0@BLUPR05MB232.namprd05.prod.outlook.com>
This is a multi-part message in MIME format.
--------------98AF6D15DFE22E1BA1149A91
Content-Type: text/plain; charset=windows-1252; format=flowed
Content-Transfer-Encoding: 7bit
We are researching hosted products now and LogRhythm and EIQ are at the
top of our list.
On 5/25/2017 11:20 AM, MATT KARSCHNER wrote:
>
> Hi everyone,
>
>
> I'm curious what you all are using, if anything, for log monitoring /
> SIEM products or services. We are looking into these at the moment:
>
>
> AlienVault
>
> Catchpoint
>
> EventTracker
>
> FortiSIEM
>
> LogRhythm
>
> Logic Monitor
>
> NetWatcher
>
>
> Thank you for any information.
>
>
> --
>
> Matt Karschner
>
> Network Specialist
>
> Lycoming College
>
> 700 College Place Box 142
>
> Williamsport, PA 17701
>
> 570.321.4397 <tel:570.321.4397>
>
> karschner@lycoming.edu <mailto:franquet@lycoming.edu>
>
> ___________________________________________________ You are subscribed
> to the ResNet-L mailing list.
>
> To subscribe, unsubscribe or search the archives, go to
> http://LISTSERV.ND.EDU/archives/resnet-l.html
> ___________________________________________________
>
___________________________________________________
You are subscribed to the ResNet-L mailing list.
To subscribe, unsubscribe or search the archives,
go to http://LISTSERV.ND.EDU/archives/resnet-l.html
___________________________________________________
--------------98AF6D15DFE22E1BA1149A91
Content-Type: text/html; charset=windows-1252
Content-Transfer-Encoding: 8bit
<html>
<head>
<meta http-equiv="Content-Type" content="text/html;
charset=windows-1252">
</head>
<body text="#000000" bgcolor="#FFFFFF">
We are researching hosted products now and LogRhythm and EIQ are at
the top of our list.<br>
<br>
<div class="moz-cite-prefix">On 5/25/2017 11:20 AM, MATT KARSCHNER
wrote:<br>
</div>
<blockquote type="cite"
cite="mid:BLUPR05MB232171E6850BD7E697B4E14CDFF0@BLUPR05MB232.namprd05.prod.outlook.com">
<meta http-equiv="Content-Type" content="text/html;
charset=windows-1252">
<style type="text/css" style="display:none;"><!-- P {margin-top:0;margin-bottom:0;} --></style>
<div id="divtagdefaultwrapper" dir="ltr" style="font-size: 12pt;
color: rgb(0, 0, 0); font-family: Calibri, Arial, Helvetica,
sans-serif, EmojiFont, "Apple Color Emoji",
"Segoe UI Emoji", NotoColorEmoji, "Segoe UI
Symbol", "Android Emoji", EmojiSymbols;">
<p>Hi everyone, </p>
<p><br>
</p>
<p>I'm curious what you all are using, if anything, for log
monitoring / SIEM products or services. We are looking into
these at the moment:</p>
<p><br>
</p>
<p>AlienVault</p>
<p>Catchpoint</p>
<p>EventTracker</p>
<p>FortiSIEM</p>
<p>LogRhythm</p>
<p>Logic Monitor</p>
<p>NetWatcher</p>
<p><br>
</p>
<p>Thank you for any information.</p>
<p><br>
</p>
<div id="Signature">
<div id="divtagdefaultwrapper" dir="ltr" style="font-size:
12pt; color: rgb(0, 0, 0); font-family: Calibri, Arial,
Helvetica, sans-serif, EmojiFont, "Apple Color
Emoji", "Segoe UI Emoji", NotoColorEmoji,
"Segoe UI Symbol", "Android Emoji",
EmojiSymbols, EmojiFont, "Apple Color Emoji",
"Segoe UI Emoji", NotoColorEmoji, "Segoe UI
Symbol", "Android Emoji", EmojiSymbols;">
<p class="MsoNormal">-- </p>
<p class="MsoNormal" style="text-autospace:none"><span
style="font-size:11.0pt; font-family:Calibri;
color:#18376A">Matt Karschner</span><span
style="font-size:11.0pt; font-family:Calibri"></span></p>
<p class="MsoNormal" style="text-autospace:none"><span
style="font-size:11.0pt; font-family:Calibri;
color:#18376A">Network Specialist</span><span
style="font-size:11.0pt; font-family:Calibri"></span></p>
<p class="MsoNormal" style="text-autospace:none"><span
style="font-size:11.0pt; font-family:Calibri;
color:#18376A">Lycoming College</span><span
style="font-size:11.0pt; font-family:Calibri"></span></p>
<p class="MsoNormal" style="text-autospace:none"><span
style="font-size:11.0pt; font-family:Calibri;
color:#18376A">700 College Place Box 142</span><span
style="font-size:11.0pt; font-family:Calibri"></span></p>
<p class="MsoNormal" style="text-autospace:none"><span
style="font-size:11.0pt; font-family:Calibri;
color:#18376A">Williamsport, PA 17701</span><span
style="font-size:11.0pt; font-family:Calibri"></span></p>
<p class="MsoNormal" style="text-autospace:none"><span
style="font-size:11.0pt; font-family:Calibri"><a
href="tel:570.321.4397" id="LPNoLP"
moz-do-not-send="true"><span style="color:#0000E9">570.321.4397</span></a></span></p>
<p class="MsoNormal" style="text-autospace:none"><span
style="font-size:11.0pt; font-family:Calibri"><a
href="mailto:franquet@lycoming.edu" id="LPNoLP"
moz-do-not-send="true"><span style="color:#0000E9">karschner@lycoming.edu</span></a></span></p>
</div>
</div>
</div>
___________________________________________________
You are subscribed to the ResNet-L mailing list.
<p>
To subscribe, unsubscribe or search the archives,
go to <a href="http://LISTSERV.ND.EDU/archives/resnet-l.html"
target="_blank" moz-do-not-send="true">http://LISTSERV.ND.EDU/archives/resnet-l.html</a>
___________________________________________________
</p>
</blockquote>
<br>
</body>
</html>
___________________________________________________
You are subscribed to the ResNet-L mailing list.
<p>
To subscribe, unsubscribe or search the archives,
go to <a href="http://LISTSERV.ND.EDU/archives/resnet-l.html" target="_blank">http://LISTSERV.ND.EDU/archives/resnet-l.html</a>
___________________________________________________
--------------98AF6D15DFE22E1BA1149A91--
