November 01, 2005
Applied Watch TechnologiesProduct:
Agent from $5,000, IDS Sensor from $9,000, Server Appliance from $7,500
- Ease of Use:
- Value for Money:
- Overall Rating:
- Strengths: Overall concept, documentation, support for third-party products.
- Weaknesses: Actually, very little.
- Verdict: An obvious choice for open source advocates, but eminently useful in mixed environments as well.
The open source philosophy is still gaining ground. But for some, it still smacks less of enterprise-level IT than the enthusiast working alone in their shed at night.
This might be undeserved, but can sometimes be a hurdle to acceptance. Recognizing this, Applied Watch has created a decision-support command center that builds upon open-source tools such as Snort intrusion detection, Nessus vulnerability scanning, Syslog and others. Agents collect information from these tools and pass them, via 256-bit AES encryption, to the Applied Watch Server, to which the Command Center can provide various views.
The Command Center uses a browser-less console based upon the Java runtime and can thus operate in most environments. Overall, it has the makings of a comprehensive and scalable capability that can be deployed at reasonable cost.
The Applied Watch Command Center wraps everything into a cohesive whole, providing the ability to update and manage the remote agents with new rules, and so on, at the click of a mouse, as well as providing analysis and comprehensive reporting.
The Applied Watch Agents will run in all major Unix operating environments and have extensive capabilities to interact with Snort, Nessus and other modules in order to provide a degree of remote management as well as activity monitoring. Also, the agents are heartbeat monitored and alerts will be generated if they disappear from view.
The Applied Watch concept has much to commend it. The overall presentation is good, and the documentation is clear and comprehensive. A range of hardware appliances is available to embody the various open-source modules. The Applied Watch Command Center can also be deployed as software modules to interact with existing open-source tools.
Sign up to our newsletters
SC Magazine Articles
- APT operation 'Double Tap' exploits serious Windows OLE bug
- 'DoubleDirect' MitM attack affects iOS, Android and OS X users
- Android malware 'NotCompatible' evolves, spawns resilient botnet
- The Internet of Things (IoT) will fail if security has no context
- Regin: nation-state possibly behind the stealthy modular spying malware
- Operators disable firewall features to increase network performance, survey finds
- DDoS attacks cost organizations $40,000 per hour, survey finds
- Waste no time patching Windows Schannel, OLE bugs, experts warn
- Study: 68 percent of healthcare breaches caused by loss or theft of devices, files
- Spin.com redirects to Rig Exploit Kit, infects users with malware, Symantec observes
- Study: 'High priority' issues hamper endpoint security solution implementation
- Researchers identify POS malware targeting ticket machines, electronic kiosks
- Pirated Joomla, WordPress, Drupal themes and plugins contain CryptoPHP backdoor
- DDoS attacks grew in size, threats became more complex, Q3 reports say
- Man gets 18 months in prison for accessing Subway POS devices, loading up gift cards