Connectors Overview APPLICATION SECURITY ANTI-VIRUS/ANTI-SPAM CLOUD CONTENT SECURITY APPLICATIONS DATABASE ACTIVITY MONITORING (DAM)/ DB SECURITY

Transcription

1 Connectors Overview Our library of out-of-the-box Connectors provides source-optimized collection for leading security commercial products. These products span the entire stack of event-generating source types, from network and security devices to databases and enterprise applications. ANTI-VIRUS/ANTI-SPAM F-Secure Anti-Virus Kaspersky Anti-Virus McAfee VirusScan Enterprise Sophos Sybari Antigen for Microsoft Exchange Symantec Endpoint Protection Manager (SEPM) DB SEP 12 Symantec Mail Security for Microsoft Exchange Trend Micro (TM) OfficeScan (Control Manager and TM Control Manager Database [DB]) Multiple DB (Control Manager) APPLICATIONS IBM WebSphere it-cube agilesi SAP Oracle WebLogic Server (BEA) SAP enterprise resource planning (ERP) Microsoft SharePoint Server DBD DATABASE ACTIVITY MONITORING (DAM)/ DB SECURITY Trustwave Application Security DbProtect IBM InfoSphere Guardium Imperva SecureSphere Oracle (Secerno DataWall) McAfee Sentrigo HedgeHog (Enterprise and vpatch) APPLICATION SECURITY Arxan GuardIT Bit9 Parity CA Layer 7 SecureSpan/CloudSpan Gateway McAfee Application Control (Solidcore) RSA Silver Tail Systems Forensics CLOUD Box CloudPassage Halo FlexConnector for REST Zscaler Nanolog Streaming Service (NSS) CONTENT SECURITY Aladdin esafe Gateway Barracuda (NetContinuum Web Firewall) McAfee and Web Security Appliance McAfee Web Gateway Proofpoint Enterprise Protection and Enterprise Privacy Puresight Content Filter Secure Computing Webwasher Trend Micro Control Manager Trend Micro InterScan Messaging Security (Control Manager) Trend Micro InterScan Web Security (Control Manager) DATA LEAK PREVENTION (DLP) Fidelis XPS GTB Inspector McAfee Host Data Loss Prevention Endpoints (HDLP) Symantec DLP (Vontu) Verdasys Digital Guardian FOLLOW General Dynamics Commercial Cyber Services For information contact us at: GDCCS_sales@gdit.com

2 DATA SECURITY CyberArk Inter-Business Vault CyberArk Sensitive Document Vault HP Atalla Network Security Processor (NSP) Ingrian Vormetric Data Security Manager Vormetric Data Firewall JBoss Security Auditing File 7.1 DATABASE IBM DB2 IBM DB2 UDB Audit File, version 10 IBM DB2 UDB Audit File, Multiple Instance Microsoft SQL Oracle Audit DB Oracle Audit Vault Oracle Audit Syslog, version 11gR2 Oracle Audit XML11gR2 Sybase Adaptive Server Enterprise CLINICAL/HEALTHCARE APPLICATIONS FairWarning FIREWALL Check Point FW-1 Cisco PIX Firewall Cisco PIX/ASA Syslog, version 8.5, 8.6 F5 BIG-IP Application Security Manager Juniper Networks (Altor Networks Virtual Firewall) Juniper Network Security Manager (NetScreen) Juniper Network Security Manager Syslog, version Juniper Networks Firewall and VPN Lucent Managed Firewall McAfee Desktop Firewall Secure Computing Gauntlet Firewall/VPN INTRUSION DETECTION SYSTEM AND INTRUSION PREVENTION SYSTEM - HOST BASED IBM BlackICE Server Protection (IBM Security SiteProtector System) NFR Security HID Symantec Critical System Protection Database Tripwire Manager Tripwire Enterprise IDS/IPS NETWORK-BASED Broadweb NetKeeper Bro IDS Bro IDS NG File Cisco IPS Sensor Cisco Secure IDS Cisco WIPS SNMP CounterSnipe Enterasys Dragon HP TippingPoint Security Management System (SMS) IBM RealSecure Server Sensor IBM RealSecure Workgroup Manager IBM Proventia IPS Appliance (SiteProtector) Juniper Networks IDP (NetScreen) McAfee Network Security Manager (Intru Shield) NFR Central Management Server NFR Security NID NitroSecurity IPS PacketAlarm IDS Radware DefensePro Snort Sourcefire Intrusion Sensor Sourcefire Defense Center management console Sourcefire Defense Center estreamer, version 5.0.2, 5.1 Sourcefire Real-time Network Awareness (RNA) Sensor Top Layer Attack Mitigator HONEYPOT HoneyD 2

3 IDM, IAM, AND IDENTITY SECURITY ActivCard AAA Server DB RSA Aveksa BeyondTrust PowerBroker Cisco Secure Access Control Server (ACS) CyberArk Privileged Identity Management (PIM) Suite CyberArk Privileged Session Management (PSM) Suite FoxT ServerControl IBM Tivoli Access Manager Juniper Steel-Belted Radius (SBR) Lieberman Software Enterprise Random Password Manager (ERPM) Microsoft Active Directory Microsoft Forefront Microsoft Forefront DB Microsoft Network Policy Server Novell Nsure Audit ObserveIT Enterprise Oracle Sun ONE Directory Server VMware PacketMotion PacketSentry Ping Identity PingFederate Quest ChangeAuditor DB RSA Authentication Manager RSA Access Manager (ClearTrust) Secure Computing SafeWord PremierAccess Securonix SpectorSoft Spector 360 Export Service Thycotic Secret Server INTEGRATED SECURITY Barracuda Spam Firewall Cisco ASA 5500 Fortinet FortiGate HP TippingPoint Next-Generation Firewall (NGFW) Palo Alto Networks PAN-OS Secure Computing Sidewinder SonicWALL Stonesoft StoneGate IT OPERATIONS HP Operations Manager (OM and OMi) HP OpenView Operations (OVO) LOG CONSOLIDATION AND ANALYSIS Cisco Security Monitoring, Analysis, and Response System (MARS) Enterprise IT Security SF-RiskSaver LOGbinder SP Quest InTrust (fka Aelita Event Manager [AEM]) Qualys QualysGuard File, version 7.1 MAIL FILTERING Cisco IronPort Security Appliance McAfee Gateway (Secure Computing IronMail) McAfee Security for Servers (GroupShield) MessageGate Symantec Messaging Gateway (Mail Security 8200 Series) MAINFRAME CA Top Secret Enterprise IT Security SF-Sherlock Enterprise IT Security SF-NoEvasion IBM OS/390 (NVAS) IBM OS/390 (SDSF) Helpsystems PowerTech Interact Type80 SMA_RT for RACF Type80 SMA_RT for CA Top Secret IBM AS/400 Mail server IBM Lotus Notes Domino Enterprise Server Microsoft Exchange Microsoft Exchange PowerShell Microsoft Forefront for Exchange Server Microsoft Forefront Protection Server Management Console DB 3

4 MALWARE DETECTION AhnLab Malware Defense System (MDS) Damballa CSP Damballa Failsafe FireEye Malware Protection System (MPS) FireEye Mandiant Intelligent Response Guidance EnCase HBGary Active Defense Lastline Enterprise Proofpoint NetCitadel ThreatOptics TaaSera TaaS NetAnalyzer Triumfant Resolution Manager NETWORK ACCESS CONTROL ForeScout CounterACT Mirage Networks CounterPoint Portnox Portnox NETWORK BEHAVIOR ANOMALY Arbor Networks Peakflow Lancope StealthWatch Mazu Profiler Qosmos DeepFlow Security NETWORK FORENSICS Narus nsystem NIKSUN NetDetector RSA NetWitness AccessData CIRT NETWORK MANAGEMENT CiscoWorks Cisco Wireless LAN Controller Syslog HP Network Node Manager i SNMP Lumeta Enterprise Situational Intelligence (ESI) Lumeta IPsonar NETWORK MONITORING ISC DHCP ISC BIND Microsoft Operations Manager DB (MOM) Microsoft System Center Operations Manager (SCOM) DB Microsoft System Center Configuration Manager DB Microsoft DHCP Microsoft DNS Microsoft WINS NETWORK TRAFFIC ANALYSIS Cisco NetFlow/Flexible NetFlow NetScout ngenius FireEye npulse Hammerhead QoSient Argus InMon sflow Blue Coat Solera Networks DeepSee TCPdump NETWORK TRAFFIC MANAGEMENT Cisco Distributed Director for Cisco 4500 Bro IDS OPERATING SYSTEMS IBM AIX Operating System HP OpenVMS HP-UX Operating System HP-UX Syslog, version 11i v3 Microsoft Windows 7/NT /2000/2003/XP/2008 Server/Vista Microsoft Windows Event Log unified, SQL Server 2012 for SQL Server audit Red Hat Linux Snare for Microsoft Windows Solaris Basic Security module (BSM) UNIX SaberNet NTSyslog HP NonStop servers (XYPRO Merged Audit) 4

5 PACKET CAPTURE Ixia Anue Net Tool Optimizer Physical systems/security RedCloud (PlaSec) POLICY MANAGEMENT McAfee Policy Auditor NetIQ Security Manager Solsoft Policy Server ROUTER Cisco Router Juniper Router (JUNOS) HP H3C Comware Platform STORAGE NetApp filer (FAS) EMC Celerra SECURITY MANAGEMENT Enterasys Dragon Server IBM SiteProtector isight ThreatScape API Lookingglass ScoutVision McAfee epolicy Orchestrator (epo) McAfee Network Security Manager DB McAfee Rogue System Detection (via epo) Microsoft Audit Collection Services Network Vulnerability Advisor Symantec Enterprise Security Manager (ESM) SWITCH Cisco Catalyst Cisco CSS Series Content Services Switches Cisco NX-OS Foundry Networks BigIron HP Ethernet switch HP Networking Syslog VIRTUALIZATION CounterTack Event Horizon VMware ESX/ESXi Server VMware Virtual Center VPN Check Point VPN-1 Cisco VPN Concentrator Citrix Access Gateway Juniper/NetScreen (Neoteris) SSL VPN Nortel Contivity Extranet Switch VULNERABILITY ASSESSMENT eeye REM Security Management Console eeye Retina Network Security Scanner Harris STAT Scanner IBM Internet Scanner McAfee Vulnerability Manager (FoundScan) ncircle IP360 Device Profiler ncircle IP360 Threat Monitor Nmap Open Vulnerability and Assessment Language (OVAL) Standard QualysGuard Rapid 7 Nexpose Tenable Nessus SAINT Vulnerability Scanner WEB FILTERING Cisco IronPort Web Security Appliance Websense Web Security Suite WEB SERVER Apache Microsoft Internet Information Services (IIS) Sun ONE WIRELESS AirDefense Guard AirMagnet Enterprise AirTight SpectraGuard Aruba WLAN Mobility Controller Cisco Mobility Services Engine 5