Free and open-source tool for Windows event logs collection, analysis, reporting, real-time alerts and archiving features, accessible from a web UI.
- Snare for Windows
- Version :4.3.8
- License :Trial
- OS :Windows All
- Publisher :InterSect Alliance
Snare for Windows Description
Snare is a handy Windows service that enables users to remotely access EventLog details in real time, as well as to transfer data. It monitors all tree main event logs, namely Application, System and Security, along with secondary ones if they exist, namely DNS, Active Directory and File Replication.
Customizable setup pack and simple UI
During installation, the tool can be asked to manage your EventLog configuration by overriding any existing audit settings. What’s more, you can use the system account or input other credentials for the service, as well as enable web access with or without a password.
Monitor EventLog data remotely
Once set up, you can access Snare via a web browser and log in with the previously defined credentials to view data. The app shows the current PC events, such as created and exited processes, together with in-depth information about them, like date, system name, event count and ID, source, user name, and audit status.
Configure network and remote control settings
Snare lets you change the network configuration in regard to the destination Snare server address and port number, event log cache size, UDP or TCP, message encryption, automatic tasks (set audit and file audit configuration), data exporting to file, and others.
As for remote control, you can restrict the Snare agent to specific hosts, set an IP address allowed for remote control and indicate a password to permit its removal, establish the web server port number, and so on. This form can be reset to default.
Evaluation and conclusion
No error dialogs were shown in our tests and the app did not hang or crash. It had a good response time and consumed low CPU and RAM, so it didn’t put a strain on computer performance. To sum it up, Snare provides experienced users with a fast and simple method of viewing EventLog information from a distance.