IT Central Station is now PeerSpot: Here's why
2016-01-18T02:31:00Z

We're evaluating Tripwire, what else should we consider?

it_user371577 - PeerSpot reviewer
User at a tech company with 51-200 employees
70

We are mainly a VMware customer and for security Tripwire is being recommended. However, upon research I found that VMware has vCenter Configuration Manager and I'm checking to see if that's an alternative.

If not vCM, does anyone recommend any other products? How about CIMCOM?

Thanks.

PeerSpot user
Guest
1010 Answers

it_user372162 - PeerSpot reviewer
Real User

Have you looked into ScriptRock yet? It's a great platform for configuration management / monitoring / integrity as well as security. You can get complete visibility into the configuration of every server, network device, and cloud app you're running, ensure everything is correctly configured at all times while enforcing whatever security policies are critical to your environment. You can start with 10 nodes for free to try as well ...... www.ScriptRock.com :-) it seems to be a 'next generation' version of Tripwire.

2016-01-18T22:42:29Z
it_user363954 - PeerSpot reviewer
Vendor

After tuning your applications, you can protect them with Tripwire or Cisco's FirePOWER NGIPS solution. Cisco's solution integrates well with existing hardware and discovers non-existing hardware. This industry grade product can build financial trust from customers worried about their identities being stolen. An equivalent solution might be to stick with Tripwire. In addition use SSL/TLS (enforcing authenticity, integrity and confidentiality) while employing application certificates and client certificates in digital streams. I'm not an expert on this, but Tripwire may be more difficult to manage yet easier to configure.

2016-01-23T09:19:32Z
it_user369339 - PeerSpot reviewer
Vendor

We used Tripwire some time ago on different platforms (Intel/SPARC) and OS (Windows/Unix Solaris) and were very satisfied. The product combines the flexibility and functionality. During use Tripwire we did not have any problems with installation and configuration. The product works great on various plaformah. So I recommend it for use.

2016-01-20T07:36:08Z
Kevin Surace - PeerSpot reviewer
Vendor

Are you attempting to understand what hole you have in an application and close them? ie App Penetration testing?

Or are you asking about detecting IT security issues in production?

These are two different fields, the second arguably not very related to “Application Security” but more “Network Security”

2016-01-18T18:17:43Z
it_user371895 - PeerSpot reviewer
Consultant

My company is considered a competitor but I think you have to define better what you are looking for. there is a difference between configuration management tools like VCM to vulnerability management tools like Tripwire/ Qualys/ NNT.
As to the third product you mentioned, if you were referring to Calcom software www.calcomsoftware.com they are focused on baseline hardening and the actual act of securing the servers. This is a new automation approach which helps the IT administrator to enforce a security policy without having to test a policy in labs or breaking running services when securing the system. they are a management pack for SCOM so if you use System Center or own the license you will probably see a good ROI.

2016-01-18T14:01:15Z
it_user197019 - PeerSpot reviewer
Vendor

I'm using NNT from newnettechnolgies.com

2016-01-18T13:49:46Z
it_user352776 - PeerSpot reviewer
Consultant

i use Stormshield Endpoint Protection "https://www.stormshield.eu/endpoint-protection/" , you can configure in only witelist application checking the application certificate id and is very good to prevent cryptolocker attack.

2016-01-18T13:38:50Z
it_user333624 - PeerSpot reviewer
Consultant

hmm...I would look into these aproaches:
OSSEC
file integrity
log monitoring
rootkit detection
config analysis

Verisys(similar to Tripwire)
it's easier to use and cheaper

AIDE
open source

You'll have to look into it and what complies with the requirements in details.
Going for open source or paid enterprise in rapport with the demands of the security levels and structural needs.

2016-01-18T12:03:03Z
it_user226029 - PeerSpot reviewer
Consultant

Hi, I can't judge about the two solution as my company should be considered a competitor in the Vulnerability Management space. Still, what I'd like to recommend is to verify at least the ability to scan below the virtualization environment. I haven't heard of vCM and Vulnerabiliy Management in conjunction, so the question towards vCM would be about it gets update on Vulnerabilties discovered (ways of testing for them, frequency of updates, high risk vulnerability handling and so on).
Generally I'd suggest to consider putting the management of your Vulnerability Scanning solution outside of the virtualized environment and only use virtual sensors in it.

2016-01-18T11:47:36Z
it_user346149 - PeerSpot reviewer
Consultant

You should consider the following vendors: 

Tenable
AlienVault

2016-01-18T11:45:38Z
Buyer's Guide
Application Security Tools
July 2022
Find out what your peers are saying about Tripwire and others in Application Security Tools. Updated: July 2022.
621,327 professionals have used our research since 2012.