SSegurança #infosec #DFIR: Melhores ferramentas de Computação Forense

Tuesday, November 2, 2010

Melhores ferramentas de Computação Forense - Prêmio "2011 SC Awards"

Recentemente a revista "SC Magazine" publicou uma lista de 5 finalistas de uma premiação que está promovendo em várias categorias ligadas à Segurança da Informação.

Na categoria "Melhores Ferramentas de Computação Forense" (Best Computer Forensics Tool), seguem os resultados:

AccessData Group for Forensic Toolkit (FTK)
ArcSight for ArcSight Logger
Guidance Software for EnCase Forensic
NetWitnes s for NetWitness NextGen 9.5
Quest Software for Quest ChangeAuditor

Com exceção do último da lista "Quest ChangeAuditor" - nós da Techbiz Forense Digital somos representantes no Brasil de todos os finalistas. Seguindo os links acima, você verá os artigos já escritos neste blog sobre as empresas e ferramentas que trabalhamos.

Segue abaixo para referência a listagem dos 5 finalistas de todas as categorias:

Reader Trust Categories

Best Anti-Malware Gateway
Cisco for Cisco Web Security
M86 Security for M86 Secure Web Gateway
McAfee for McAfee Web Gateway Anti-malware
Sophos for Sophos Web Security Appliance
Websense for Websense Web Security Gateway

Best Anti-Malware Management (client-based, typically software only)
ESET for ESET NOD32 Anti-virus 4
Kaspersky Lab Americas for Kaspersky Open Space Security
McAfee for McAfee Endpoint Protection Suite
Microsoft for Forefront Client Security
Sophos for Sophos Endpoint Security and Data Protection

Best Computer Forensics Tool
AccessData Group for Forensic Toolkit (FTK)
ArcSight for ArcSight Logger
Guidance Software for EnCase Forensic
NetWitness for NetWitness NextGen 9.5
Quest Software for Quest ChangeAuditor

Best Data Leakage Prevention
Cisco Systems for Cisco IronPort Email DLP
McAfee for McAfee Data Loss Prevention (DLP)
RSA Security for RSA Data Loss Prevention (DLP) Suite
Symantec for Symantec Data Loss Prevention
Trend Micro for Trend Micro Data Loss Prevention

Best Email Content Management
Cloudmark for Cloudmark DesktopOne
McAfee for McAfee Web SaaS
Proofpoint for Proofpoint
Sophos for Sophos Email Security Appliance
Symantec for Symantec Brightmail Gateway

Best Email Security
Cisco Systems for Cisco IronPort Email Security
DataMotion for SecureMail
SonicWALL for SonicWALL E-Class ESA ES8300
Sophos for Sophos Email Security Appliance
Symantec for PGP Universal Gateway Email from Symantec
Webroot for Webroot Email Security Service

Best Endpoint/UTM Security
Check Point Software Technologies for Check Point UTM-1
McAfee for McAfee Total Protection for Endpoint, Enterprise Edition
SonicWALL for SonicWALL E-Class Network Security Appliance (NSA) E8500
Sophos for Sophos Endpoint Security and Data Protection
Symantec for Symantec Endpoint Protection 11.0

Best Enterprise Firewall
Cisco Systems for Cisco ASA 5585-X
Fortinet for FortiGate-3950B
McAfee for McAfee Firewall Enterprise
Palo Alto Networks for Palo Alto Networks PA-4000 Series next-generation firewalls
SonicWALL for SonicWALL E-Class Network Security Appliance (NSA) E8500

Best Identity Management Application
CA Technologies for CA Identity Manager
IBM for IBM Tivoli Identity and Access Assurance
Microsoft for Forefront Identity Manager 2010
NetIQ for NetIQ Identity & Access Management Solution
Novell for Novell Identity & Access Management

Best Integrated Security-UTM Product
Astaro Internet Security for Astaro Security Gateway
Fortinet for FortiGate-1240B
NETGEAR for NETGEAR ProSecure UTM25
SonicWALL for SonicWALL NSA 2400MX
Sophos for Sophos Endpoint Security and Data Protection

Best Intrusion Detection/Prevention Product
Check Point Software Technologies for Check Point IPS Software Blade
Cisco for Cisco Intrusion Prevention System
HP TippingPoint for HP TippingPoint IPS
McAfee for McAfee Network Security Platform
Sourcefire for Sourcefire IPS (based on Snort)

Best IPsec/SSL VPN
Cisco Systems for Cisco ASA Secure Remote Access solution
Citrix Systems for Citrix Access Gateway
F5 Networks for BIG-IP Edge Gateway
Juniper Networks for SA Series SSL VPN Appliances
SonicWALL for SonicWALL Secure Remote Access (SRA) EX7000

Best Managed Security Service
Entrust for Entrust Managed PKI
McAfee for McAfee SaaS Total Protection
RSA, the security division of EMC, for RSA Adaptive Authentication
SecureWorks for SecureWorks Managed Security Services
Symantec for Symantec Managed Security Services

Best Mobile/Portable Device Security
Good Technology for Good for Enterprise
IronKey for IronKey Enterprsie
McAfee for McAfee Enterprise Mobility Management (McAfee EMM)
Sophos for Sophos SafeGuard Enterprise
Symantec for Symantec Endpoint Protection Mobile Edition

Best Multifactor Product
Entrust for Entrust IdentityGuard
IBM for IBM Tivoli Access Manager for Enterprise Single Sign-On
Imprivata for Imprivata OneSign
PhoneFactor for PhoneFactor
RSA, the security division of EMC, for RSA SecurID Authentication
VeriSign for VeriSign Identity Protection (VIP) Authentication Service

Best Policy Management Application
Cisco Systems for Cisco Network Admission Control Appliance
McAfee for McAfee Policy Auditor
NetIQ for NetIQ Secure Configuration Manager
Symantec for Symantec Control Compliance Suite
Tripwire for Tripwire Enterprise 8.0

Best Security Information/Event Management (SIEM) Appliance
ArcSight for ArcSight ESM
Q1 Labs for QRadar SIEM
RSA, the security division of EMC, for RSA enVision Platform
Symantec for Symantec Security Information Manager
Tripwire for Tripwire Log Center

Best Vulnerability Management Tool
McAfee for McAfee Risk Management Solution
nCircle Network Security for nCircle IP360/WebApp360
Qualys for QualysGuard Vulnerability Management (VM)
Rapid7 for NeXpose
Secunia for Secunia Corporate Software Inspector (CSI)
Tenable Network Security for Tenable SecurityCenter 4.0 with Nessus 4.2, Log Correlation Engine (LCE) 3.4 and Passive Vulnerability Scanner (PVS) 3.2

Best Web Application Firewall
Citrix Systems for NetScaler Application Firewall
F5 Networks for BIG-IP Applicaiton Security Manager
Imperva for SecureSphere Web Application Firewall
International Business Machines for IBM Security Network IPS with Web App Protection
SonicWALL for SonicWALL Web Application Firewall Service

Best Web Content Management Product
Barracuda Networks for Barracuda Web Filtering
McAfee for McAfee Web Gateway
Sophos for Sophos Web Security Appliance
Websense for Websense Web Security Gateway
Zscaler for Zscaler Web Security Service

Excellence Categories

Best Enterprise Security Solution
ArcSight for ArcSight Enterprise Security Manager (ESM)
Core Security Technologies for CORE IMPACT Pro
Juniper Networks for Junos Pulse
McAfee for McAfee ePolicy Orchestrator
Tripwire for Tripwire Enterprise 8.0

Best Regulatory Compliance Solution
McAfee for McAfee Total Protection for Compliance
Modulo for Modulo Risk Manager NG
nCircle Network Security for nCircle Suite360
Agiliance for Agiliance RiskVision
QualysGuard for QualysGuard PCI
Tenable Network Security for Tenable SecurityCenter 4.0

Best Security Company
Barracuda Networks
NetWitness
Qualys
RSA, the security division of EMC
Trustwave
Websense

Best SME Security Solution
McAfee for McAfee SaaS Endpoint and Email Protection
Qualys for QualysGuard Express
Sophos for Sophos Endpoint Security and Data Protection
Symantec for Symantec Endpoint Protection Small Business Edition
Webroot for Webroot Web Security Service

Rookie Security Company of the Year
ActiveBase for ActiveBase
AlertBoot for AlertBoot
Avecto for Avecto
Confidela for Confidela
Invincea for Invincea
Mobile Active Defense for Mobile Application Development Partners
Professional Categories

Best Professional Certification Program
GIAC - Global Information Assurance Certification for GIAC Security Expert (GSE)
GIAC - Global Information Assurance Certification for Global Information Assurance Certification Program (GIAC) - GIAC Certified Intrusion Analyst (GCIA)
Information System Audit and Control Association for Certified in the Governance of Enterprise IT (CGEIT) Certification
Information System Audit and Control Association for Certified Information Systems Auditor
Learning@Cisco for Cisco Security Certifications

Best Professional Training Program
Foreground Security for Foreground Security Training
InfoSec Institute for InfoSec Institute
(ISC)² for (ISC)² Educational Programs
SANS Institute for SANS Institute
Security University for Security University's Q/ISP Qualified/ Information Security Professional Training Program
The Training Camp for IT Professional Certification Training

Best Security Team
GoDaddy.com for Go Daddy Security
ING for Security Operations Center
Teleperformance for TelePerformance
Troy University for Troy University IT Security Team
USAA for Enterprise Security Group (ESG)

CSO of the Year
Tim Waggoner
David Billeter
Jason Taule
Scott Sysol

SSegurança #infosec #DFIR

Tuesday, November 2, 2010

Melhores ferramentas de Computação Forense - Prêmio "2011 SC Awards"

Reader Trust Categories

Excellence Categories

Professional Categories

No comments:

Post a Comment

Labels

Blog Archive