22:
188:
222:
The Snare Server software was originally designed to meet the needs of
Australian-based intelligence agency clients, and distribution was restricted to Australia only. The need for a server solution to complement the increasingly popular Snare agents, pushed the InterSect Alliance team to find
231:
Snare has been described as the 'De Facto standard for
Windows event retrieval', and because of its deep roots in the open source movement, coupled with available commercial support options, is used by small non-profit organisations, right up to huge multinational, Fortune-500 companies.
184:
Snare is currently used by hundreds of thousands of individuals and organisations worldwide to meet local and federal information security guidelines associated with auditing and eventlog collection.
254:
The Snare agents have been designed to collect audit log data from a host system, and push the data as quickly as possible, to a central server (or servers), for archive, analysis, and reporting.
268:
The Snare Server is an appliance, or software-only solution, that provides a variety of analysis tools and to facilitate the collection, analysis, reporting, and archival of audit log data.
357:
173:. Snare Enterprise Epilog for Unix provides a method to collect any text based log files on the Linux and Solaris operating systems. Opensource Agents are available for
165:, a variety of browsers, and more. Snare Enterprise Epilog for Windows facilitates the central collection and processing of Windows text-based log files such as
166:
205:
141:
nvironment) is a collection of software tools that collect audit log data from a variety of operating systems and applications to facilitate centralised
463:
105:
39:
350:
468:
381:
401:
86:
43:
58:
170:
65:
216:
158:
72:
265:
in order to facilitate log transfer from networks of low classification to networks of higher classification.
32:
54:
262:
235:
Organisations that produce audit server software that competes with the Snare Server software, such as
162:
261:, a Snare Server appliance, or a custom application. Snare agents are also able to push logs over a
219:
soon followed, and additional operating systems, and applications were added to the mix over time.
212:
154:
200:
The Snare series of agents began life in 2001 when the team at InterSect
Alliance created a
79:
434:
439:
457:
258:
246:
Most agents have both a supported commercial, and an open-source version available.
142:
405:
448:
327:
21:
444:
240:
187:
429:
236:
201:
186:
150:
146:
174:
178:
15:
243:, all use and recommend the Snare agents to their customers.
223:
overseas partners, and allow distribution internationally.
46:. Unsourced material may be challenged and removed.
121:(sometimes also written as SNARE, an acronym for
8:
206:Trusted Computer System Evaluation Criteria
191:Snare for Windows - Objective configuration
106:Learn how and when to remove this message
319:
145:. Enterprise Agents are available for
7:
345:
343:
44:adding citations to reliable sources
292:Snare Enterprise Epilog for Windows
257:The central server can be either a
283:Snare Enterprise Agent for Solaris
277:Snare Enterprise Agent for Windows
14:
295:Snare Enterprise Epilog for Unix
289:Snare Enterprise Agent for MSSQL
286:Snare Enterprise Agent for macOS
280:Snare Enterprise Agent for Linux
20:
363:from the original on 2008-08-27
31:needs additional citations for
1:
307:Snare Agent Management Tools
204:kernel module to implement
485:
464:Computer security software
208:auditing at the C2 level.
469:Linux security software
263:unidirectional network
192:
190:
55:"Snare" software
328:"InterSect Alliance"
163:Microsoft SQL Server
40:improve this article
272:Snare Product Suite
193:
116:
115:
108:
90:
476:
417:
416:
414:
413:
404:. Archived from
398:
392:
391:
389:
388:
378:
372:
371:
369:
368:
362:
355:
347:
338:
337:
335:
334:
324:
301:Snare Repository
111:
104:
100:
97:
91:
89:
48:
24:
16:
484:
483:
479:
478:
477:
475:
474:
473:
454:
453:
430:Snare Solutions
426:
421:
420:
411:
409:
400:
399:
395:
386:
384:
380:
379:
375:
366:
364:
360:
353:
349:
348:
341:
332:
330:
326:
325:
321:
316:
304:Snare Reflector
274:
252:
239:, Sensage, and
229:
198:
112:
101:
95:
92:
49:
47:
37:
25:
12:
11:
5:
482:
480:
472:
471:
466:
456:
455:
452:
451:
442:
437:
432:
425:
424:External links
422:
419:
418:
393:
373:
339:
318:
317:
315:
312:
311:
310:
309:
308:
305:
302:
298:Snare Central
296:
293:
290:
287:
284:
281:
278:
273:
270:
251:
248:
228:
225:
197:
194:
114:
113:
28:
26:
19:
13:
10:
9:
6:
4:
3:
2:
481:
470:
467:
465:
462:
461:
459:
450:
446:
443:
441:
438:
436:
435:Snare Central
433:
431:
428:
427:
423:
408:on 2008-02-21
407:
403:
397:
394:
383:
377:
374:
359:
352:
346:
344:
340:
329:
323:
320:
313:
306:
303:
300:
299:
297:
294:
291:
288:
285:
282:
279:
276:
275:
271:
269:
266:
264:
260:
259:syslog server
255:
249:
247:
244:
242:
238:
233:
226:
224:
220:
218:
214:
209:
207:
203:
195:
189:
185:
182:
180:
176:
172:
168:
164:
160:
156:
152:
148:
144:
140:
136:
132:
128:
124:
120:
110:
107:
99:
88:
85:
81:
78:
74:
71:
67:
64:
60:
57: –
56:
52:
51:Find sources:
45:
41:
35:
34:
29:This article
27:
23:
18:
17:
440:Snare Agents
410:. Retrieved
406:the original
396:
385:. Retrieved
376:
365:. Retrieved
331:. Retrieved
322:
267:
256:
253:
245:
234:
230:
227:Distribution
221:
210:
199:
183:
143:log analysis
138:
134:
133:nalysis and
130:
126:
122:
118:
117:
102:
93:
83:
76:
69:
62:
50:
38:Please help
33:verification
30:
449:SourceForge
211:Agents for
458:Categories
445:Snare Lite
412:2008-06-24
402:"LogLogic"
387:2008-06-24
367:2008-06-24
333:2008-06-23
314:References
66:newspapers
351:"Sensage"
137:eporting
96:July 2024
358:Archived
241:LogLogic
129:trusion
382:"Cisco"
217:Solaris
213:Windows
196:History
159:Solaris
155:Windows
125:ystem i
80:scholar
250:Design
215:, and
82:
75:
68:
61:
53:
361:(PDF)
354:(PDF)
237:Cisco
202:Linux
151:macOS
147:Linux
119:Snare
87:JSTOR
73:books
177:and
175:Irix
59:news
447:on
179:AIX
171:IIS
167:ISA
42:by
460::
356:.
342:^
181:.
161:,
157:,
153:,
149:,
415:.
390:.
370:.
336:.
169:/
139:E
135:R
131:A
127:N
123:S
109:)
103:(
98:)
94:(
84:·
77:·
70:·
63:·
36:.
Text is available under the Creative Commons Attribution-ShareAlike License. Additional terms may apply.
