Hi to everyone.
I am new to this forurm. Is anyone familier with the eTrust Network Forensics. I have to use it for internal investigation and monitoring company traffic within a company with 4000+ employes. It´s rather expensive - and therefore It would be nice to hear if others have good / bad expieriences with this tool.
Hi,
Are there any 'specifics' that you will need to monitor or look for? eg Internet HTTP traffic, etc? There are many good tools, & IDS/IPS products that can assist depending on what you're looking for & being able to monitor.
Ideally I think you should look at a range of technologies to assist you not just one, such as Proxy Logs, IDS/IPS, Active Directory logs, etc & then using that info and specific IDS signatures, perhaps you will be able to pick out key incidents of interest to teh company.
Just a thought.