Symtrex Inc.

Cyber Security Specialist

Give Us a Call - 866-431-8972
Visit Us On FacebookVisit Us On TwitterVisit Us On Google PlusVisit Us On Linkedin
You are here: Home / Security Solutions / Snare Product Suite / Snare Enterprise Agents / Snare Agent for Windows

Snare Agent for Windows

Snare Agent for Windows

Snare Enterprise Agent for Windows is the industry standard for capturing and filtering audit and event log data, in a supported package, and with an enterprise-level feature set including highly reliable delivery, encryption, and custom event sources.

Snare Enterprise Agent for Windows is a Windows XP, Vista, Windows 2003, Windows 7, 8, 8.1, Windows 2008/2008 R2, Windows 2012/2012 R2 (and updates) compatible service that interacts with the underlying Windows Eventlog subsystem to facilitate remote, real-time transfer of event log information. Log data is converted to text format, and delivered to a remote Snare Server, remote SIEM server or to a remote Syslog server with configurable and dynamic facility and priority settings.

Features of the Snare Agent for Windows, Enterprise Version include:

  • Capturing all windows event logs, from the Security, Application and System logs, as well as the DNS, File Replication Service, and Active Directory logs
  • Capturing the large number of custom Windows event logs that exist in the Windows 7,8 2008 and 2012 environments
  • Caching of events in case of a network disruption, ensuring that events are not lost
  • Confirmed log message delivery with Smart TCP - no lost or missing logs.
  • Encryption with TLS/SSL*or 3DES
  • Dynamic DNSWindows Agent config
  • External device monitoring, such as USB devices and removable media
  • Log to multiple destinations
  • A single smart MSI for all Windows platforms
  • Group Policy Support
  • Allow administrators to remotely monitor changes to the agent’s configuration
  • Regular expression for General Search Match
  • Event per Second (EPS) rate controls
  • UTC time format
  • Truncation of verbose event support
  • Installer supports 32 and 64 bit versions of Windows

For your convenience you can also use the following MSI package for installation of a large number of agents in your organization. You will need to customize but it is a great starting point. MSI packages can be installed remotely using SMS, and other Microsoft, and third party, utilities.

Download the MSI Package - Click Herebigger_buy_now.fw

MSI Manual

Download the Open Source Snare Agent - Click Here (Version 4.0.1.2a)

Download the Snare Agent for Windows User Guide

For more information on the Enterprise Snare Agent for Windows, contact us.

live chat software