Based on our record, Suricata should be more popular than Cisco Umbrella. It has been mentiond 12 times since March 2021. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
Cisco Umbrella | Leader in Cloud Cybersecurity and SASE Solutions. Source: about 1 year ago
A combination of subscription ip blocklists like that sold by MaxMind combined with DNS and application filtering services like Umbrella would catch most services. For good measure I'd toss in local .exe application whitelisting running on each of the schools machines to only allow the applications the school wants using something like applocker which is included in windows so it probably fits into their budget. Source: over 1 year ago
We've been very happy with Cisco's Umbrella product. A few years back I "test drove" the free version, but thats a very poor substitute for the paid product. It's not cheap, but it has worked very well for us. Over 70% of our users are remote since the start of COVID, so we opted for the "roaming client" installation on every endpoint. We have a "basic" network profile for our office locations that slightly... Source: over 1 year ago
Linux has (free) tools to improve security and detect/remove malware: Lynis,Chkrootkit,Rkhunter,ClamAV,Vuls,LMD,radare2,Yara,ntopng,maltrail,Snort,Suricata... Source: 6 months ago
Monitoring & Active Measures - Exporting firewall events to an external time-series database like I describe above is good to see who is touching your firewall or accessing your web site. Using an Intrusion Detection System / Intrusion Prevention System (IDS/IPS) such as open-source Suricata, which is a free package on pfSense, and deploying file system integrity monitoring, such as the open-source Wazuh on the... Source: 7 months ago
Active Measures - Includes (IDS/IPS) such as open-source Suricata or Snort on pfSense, and File Integrity Monitoring (FIM), such as the commercial Tripwire and dated, open-source Tripwire, or the open-source Wazuh installed on servers. These can be combined into a Security Information and Event Management (SIEM) system like the open-source solution, Security Onion. Wazuh itself has evolved into a SIEM. Source: over 1 year ago
Active measures may include an intrusion detection system / intrusion prevention systems (IDS/IPS) such as open-source Suricata on the firewall, and installing file system integrity monitoring, such as the open-source Wazuh on the exposed server. These are combined in one open-source solution, Security Onion. Source: over 1 year ago
Thanks! Was there something in particular you were wondering about? The built-in IDS/IPS is just Suricata under the hood - https://suricata.io/. Source: almost 2 years ago
Kaspersky Security for Internet Gateways - Kaspersky Security for Internet Gateways offers secure internet access for the employees.
snort - Snort is a free and open source network intrusion prevention system.
McAfee SmartFilter - McAfee Web Protection is a web security solution that includes an on-premises secure web gateway and SaaS-based web security delivered from the cloud.
Next-Generation Intrusion Prevention System (NGIPS) - Cisco Firepower NGIPS (Next-Generation IPS) provides contextual awareness, security intelligence, and advanced threat protection against attacks and malware.
OpenDNS Umbrella - Cloud Security
Wazuh - Open Source Host and Endpoint Security