Detecting Advanced Persistent Threats
Symtrex Inc New Technical Whitepaper on how to Detect Advanced Persistent Threats Using the Enterprise Snare Agents
Toronto, Ontario (PRWEB) April 03, 2014
Advanced Persistent Threats or APTs are gaining a lot of media attention lately, although they have been around for quite some time. The goal of the APT is to avoid detection, and these attacks are normally the work of extremely skilled, well funded and highly motivated individuals.
The use of antivirus software, while useful to control typical viruses, are not effective against these types of attacks. In our technical whitepaper which is available from our website, we demonstrate how to use the Enterprise Snare Agents to detect Advanced Persistent Threats.
The Enterprise Snare Agent is a program that is installed on your windows devices to send the windows event logs to an event log collector or SIEM. The Enterprise Snare Agent works with Windows 2008 R2, 2012, 2003, Windows 7 and 8. The Snare Agents can be configured to send security relevant events to the SIEM of your choice, and with a default installation will collect logins/logoffs, monitoring of security policies, and process events. The events are sent in real time,either via UDP or TCP. When using TCP the events can be encrypted with TLS/SSL 256 bit AES ( Advanced Encryption Standard ) as per NIST SP800-92 section 5.1.3 Log Security.
About Symtrex Inc.
Symtrex offers several distinctly different IT security services and products for our clients. Our expertise in the aspect of network security as it pertains to evolving regulations, standards and security compliance is in high demand. In bridging this information need, you will find throughout our web site that we have endeavored to provide all the building blocks necessary to educate our clients and their personnel on the security aspects of their respective security standards as they pertain to their infrastructure. The peace of mind we provide to our clients is immeasurable.
Should you require assistance on any network security issue, or a complete network security overview of your organization, you’ve come to the right location. Contact us at 866-431-8972 or visit the website at http://www.symtrex.com.
For the original version on PRWeb visit: http://www.prweb.com/releases/2014/03/prweb11681526.htm