A core tenement of the Snare design philosophy is to play well with others. Snare is installed around the word, on every continent, in most every country, on the ground, under the sea and in the air. We work with most every MSSP and SIEM on the market as well as home grown systems. Snare is the defacto logging platform to the point that the enriched Snare log format is a standard used by many Centralized Logging Platforms.
“Effective endpoint monitoring significantly improves the ability to detect threats within the enterprise. By joining with Snare and analyzing logs from the Snare Enterprise agent with our ActiveGuard platform, we have guaranteed and secure delivery, and are making it easier and more accessible for clients to monitor their Windows endpoints. We’ve provided Windows monitoring for quite some time now, but the customer will receive additional value and support from the seamless integration between our two organizations.” Don Gray, CSS NTT Security
While we have been an industry founder and thought leader, Snare is recognized as being easy, fast, scalable and reliable. Snare provides the following technology enabled benefits to our partners and joint customers:
- Reliable – Rock Solid Logging – Snare works.
- Fast – deploy an enterprise logging platform on servers, desktops, BYOD’s Unix, Linux, Mac, SQL, flat files and the like in hours not months
- No 3rd party Software required ensuring Snare is on the latest platforms and no introduced .Net, Java or other 3rd party vulnerabilities.
- A single lightweight binary that covers all platforms and architectures.
- Address a multitude of use cases including event data, file data, File Integrity Monitoring, File Activity Monitoring, Registry Integrity Monitoring, USB auditing and the like.
- A mid-tier Log Forensics store with a 50:1 compression ratio
- 24×7 built in failover and redundancy
- Low impact – sipping on resources and reduced network demands
- Independent Veracode certified code line.
- A plug and play suite of products addressing the requirements of the most complex environments.
- Faster Mean time to detection through noise reduction architecture including audit policy controls, source filtering and verbose truncation
- Multi Port Protocol destination and configurations with all you favorite including, m UDP, TCP, over the wire TLS and the like.
- Management console to set or dynamically configure your policies, performance and other parameters on schedule
- Platform agnostic – leave Snare where it is and mix and match your SIEM
|NTT Security (formerly Solution ARY) is Technology Integration Partner with Snare.
With a focus on managed security services (MSS) and global threat intelligence, NTT Security protects traditional and virtual IT infrastructures, cloud environments and mobile data. Clients can optimize security programs, make informed decisions, achieve compliance and reduce costs.
Built on the patented, cloud-based global service platform, global threat intelligence from the Global Threat Intelligence Center (GTIC) and certified security experts, services are delivered 24/7 through multiple state-of the art security operations centers (SOCs).
|SecureWorks (formerly Dell SecureWorks) is a Snare Technology Integration Partner as well as a Snare customer.
Snare finds, filters and forwards critical log data to SecureWorks which has ~ 4,400 customers in 61 countries, processing over 250 Billion events per day.
Sites can license preconfigured Snare for SecureWorks agents direct form SecureWorks or point some or all their separately licensed Snare Enterprise agents directly to SecureWorks.
|SecureIT delivers a next generation security analytics and operations management platform for the modern era of big data and advanced cyber threat.|
|Verizon is a Snare MSSP partner . With digital footprints expanding, the attack surface for cyber breaches grows making organization more vulnerable. The way of doing business is changing rapidly. Disruptive business models, and accelerated adoption of new technologies like mobility and cloud bring security to the forefront of the conversation, it’s no longer considered an afterthought but an enabler of digital transformation.|
|Trustwave helps businesses fight cybercrime, protect data and reduce security risk. With cloud and managed security services, integrated technologies and a team of security experts, ethical hackers and researchers, Trustwave enables businesses to transform the way they manage their information security and compliance programs.|
|AT&T Managed Cybersecurity Services bring together a global network of 24/7 operations centers, by using a multi-layer defense approach to address cybersecurity risks in even the most complex environments.|
|Symantec and Snare have worked together for many years. Our security research centers around the world provide unparalleled analysis of and protection from IT security threats that include malware, security risks, vulnerabilities, and spam.|
|RSA (Division of EMC) is a Technology Integration Partner with Snare.
The RSA NetWitness Suite provides the foundation with pervasive visibility, enabling improved detection, investigation and response to security incidents. The RSA NetWitness Suite consists of individual technologies and services solutions that are integrated to provide a more comprehensive solution.
Snare Windows, Linux and Epilog agents have all been called into service to adjunct the RSA FTPS and SFTP agents.
|Splunk Inc. is an American multinational corporation based in San Francisco, California, that produces software for searching, monitoring, and analyzing machine-generated big data, via a Web-style interface.
Splunk customers can use Snare to feed filtered and truncated data to Splunk for analysis, reducing the amount of data ingested and paid for.
|LogRhythm, Inc. is an American security intelligence company that unifies Security Information and Event Management, log management, network and endpoint monitoring and forensics, and security analytics.|
|McAfee Enterprise Security Manager is a security information and event management (SIEM) solution that delivers actionable intelligence and integrations to prioritize, investigate, and respond to threats.|
|LogLogic is a technology company that specializes in Security Management, Compliance Reporting, and IT Operations products. LogLogic even cloned the Snare Agent technology to create Lasso, a legacy agent.|
|Micro Focus ArcSight was a cyber security company founded in 2000 that provides big data security analytics and intelligence software for security information and event management and log management solutions. Snare supports many large ArcSight deployments and includes an optional native LEEF format at both the Agent and Reflector levels|
|Elasticsearch is a distributed, RESTful search and analytics engine capable of solving a vast array of business problems. Elasticsearch is designed for horizontal scalability, maximum reliability, and easy management.|
|Endpoints, IoT, Infrastructure, Security Tools, Applications, VM’s and Cloud – the number of things you need to secure and monitor grows constantly. FortiSIEM (formerly AccelOps) – Fortinet’s Multivendor Security Incident and Events Management solution brings it all together. Visibility, Correlation, Automated Response and Remediation in a single, scalable solution.|
|syslog-ng is a free and open-source implementation of the syslog protocol for Unix and Unix-like systems.
Snare Server, central and reflector can accept Syslog feeds from the like of Syslog-ng
|AlienVault, Inc. is a developer of commercial and open source solutions to manage cyber-attacks, including the Open Threat Exchange, the world’s largest crowd-sourced computer-security platform.|
|Developed by network and systems engineers who know what it takes to manage today’s dynamic IT environments, SolarWinds has a deep connection to the IT community.|
|Snare is a highly scalable suite of security products utilizing output-driven noise reduction technologies to find, filter and forward event log data.|