Why are you looking to replace WebTrends? If you have the bodies and the expertise, you might consider rolling your own. You need a backend database (coupled with your ESM/HSM for archive), some mechanisms to get the data sources into the database, some perl code to take web requests and execute queries on the data and a web server to serve up the data.
Three more products are:
Tivoli Products - Tivoli Enterprise Console, Tivoli Global Enterprise Manager, Tivoli Risk Manager
Internet Security Systems - ISS SafeSuite Decisions
eSecurity - www.esecurityinc.com
If you are a large enterprise and Tivoli shop, then the Tivoli products can do the job (with substantial overkill). If you run the ISS products (System Scanner, Internet Scanner, RealSecure) and either Check Point FW-1 or NAI Gauntlet, then this might be the product for you. The other interesting one is eSecurity. This has probably the greatest variety of input sources (firewalls, IDS, AV, OS, DB, web, policy, vulnerability, authentication).
I'd be interested in your conclusions. If you see any other product reviews or comprehensive lists, please send them out to the list or individually.
Thanks!
Steve
--
Steve Lodin - CISSP
Manager - IT Security
Roche Diagnostics Corp
<[EMAIL PROTECTED]>
317-845-2070
