The Snare and Epilog agents, from InterSect Alliance, are considered
to be the de-facto industry standard for eventlog and audit log collection.
The agents are available in two different versions:
- The Snare, and Epilog Enterprise Agents - The industry standard for capturing and filtering audit and event log data, in a supported package, and with an enterprise-level feature set, including guaranteed delivery, encryption, and custom event sources.
- Snare, and Epilog: Open source editions - Audit and event log collection, with code available under the terms of the GNU Public License.
|Feature||Enterprise Edition||Open Source Edition|
|Guaranteed message delivery (TCP)|
|Event log caching|
|Encryption (with the Snare Server)|
|Log message simulcasting|
|Dynamic DNS support|
|Centralized configuration management|
|Custom Windows eventLog sources|
|Vendor product support|
|Easy to use installer|
|Filter for events of interest|
|Remote control interface|
|View local and network users and groups|
|View local Registry configuration|
|UDP and Syslog destination options|
|Non-GUI install option|
|Upgrade option to preserve existing configuration settings|