min-width: mobile
min-width: 400px
min-width: 550px
min-width: 750px
min-width: 1000px
min-width: 1200px
NOTICE We have updated our Privacy Policy to include GDPR and the use of cookies. Click "Accept" to continue. ACCEPT

Blog

Detecting “Pass-the-hash” attacks with Sagan in real time.

Posted by Champ Clark on June 16, 2014

Back in December of 2013, the NSA released a paper titled “Spotting the Adversary with Windows Event Log Monitoring” (http://1.usa.gov/1q6t5WV). This is a great paper with a lot of resources about finding attackers using Windows Event Log analysis techniques. On page 32 of the NSA paper, it discusses detecting “Pass the Hash” ...
Continue Reading

Posted in Sagan Blog Post

Ask us about a free Sagan / MSSP POC!

Posted by ibush on January 16, 2014

Orgainzations looking for Managed Security Services around SIEM / LOGS / IDS-IPS,etc....Try our service for a 30 day trial before you buy! We deploy, we manage, you see the value before you commit! Call for more details!!


Continue Reading
Posted in Announcements

Sagan log analysis with Websense Threatseeker integration.

Posted by Champ Clark on February 07, 2013

A couple of months ago,  Quadrant Information Security announce its partnership with Websense.  This partnership enables Quadrant's “Sagan” log analysis engine to use the Websense Threatseeker to detect threats that would not be detected using normal signature-based technology.

The idea of using reputation databases with SIEM technology is not new....
Continue Reading

Posted in Sagan Blog Post

Websense Partners with Quadrant, Integrates ThreatSeeker Network Security Intelligence into Sagan

Posted by ibush on December 13, 2012

Alliance enhances focus on malicious behavior and potential threats within big data

SAN DIEGO, Dec. 13, 2012 /PRNewswire/ -- Websense, Inc. (NASDAQ: WBSN) has partnered with Quadrant Information Security to integrate the powerful Websense® ThreatSeeker® Network into Quadrant's Sagan SIEM to deliver real-time threat intelligence and streamline event analysis and reporting. With Websense, Quadrant customers have...
Continue Reading

Posted in Announcements

Quadrant Information Security’s SAGAN Product Named One of the Best in 2012 BOSSIE Awards

Posted by Champ Clark on October 10, 2012

Quadrant Information Security announced today that its Open Source Security Event Management and Analyzer Application, SAGAN, has been named one of the Best Open Source Networking and Security Software in InfoWold’s 2012 Best of Open Source Software Awards. Each year, InfoWorld's BOSSIE awards recognize the best open source software for business. The BOSSIE award winners are selected...
Continue Reading

Posted in Announcements

Quadrant Information Security’s SAGAN Product Named One of the Best in 2012 BOSSIE Awards

Posted by ibush on October 10, 2012

Quadrant Information Security announced today that its Open Source Security Event Management and Analyzer Application, SAGAN, has been named one of the Best Open Source Networking and Security Software in InfoWold’s 2012 Best of Open Source Software Awards. Each year, InfoWorld's BOSSIE awards recognize the best open source software for business. The BOSSIE award winners are selected...
Continue Reading

Posted in Announcements

Sagan Version 0-2-0 Released

Posted by Champ Clark on August 22, 2011

Quadrant Information Security is proud to release Sagan version 0.2.0!

What is Sagan?

Sagan is multi-threaded, real-time system and event-log monitoring software, but with a twist. Sagan uses a "Snort" like rule set for detecting nefarious events happening on your network and/or computer systems. If Sagan detects a "bad thing" happening, it can do a...
Continue Reading

Posted in Announcements

Building a Wireless IDS with Open Source

Posted by Champ Clark on June 28, 2011

As a security researcher, penetration tester, and all around network security guy, Kismet has always had a special place in my heart when it comes to network security testing tools. When I'm on-site, doing an internal penetration test or network security audit, it is not uncommon to see Kismet running on my laptop. Sometimes it is simply out...
Continue Reading

Posted in Tech Specs