When it comes to FIM (File Integrity Monitoring) and secure configuration management. there are two main solution vendors worth considering. Tripwire Enterprise and NNT Change Tracker.
Both have impressive existing customer rosters and reputations; are multi-million pound businesses and have an international presence.
But which solution is better?
In this blog we created a comparison of these two industry giants, to help you choose the right solution for your requirements.
Comparing Tripwire Enterprise and NNT Change Tracker
The comparison table below has been created based on information we could find online and our previous experiences using both solutions. While we have tried our best to ensure that the information is correct, there may be some omissions or errors.
We recommend that you evaluate both solutions and use the following comparison table as guidance.
File Integrity Monitoring
SIEM and Centralised Logging
PCI-DSS Benchmarking Toolkit
CIS Benchmarking Toolkit
Certified ServiceNow Integration
Ease of Set Up
Change Noise Assistance
Per Node / Endpoint
Management Console Included in Price
Agents Included in Price
Technical Support Locations
US and Europe
Customers in the Fortune 500
What are the Stand Out Differences?
Two of the standout differences for us are:
1. The use of Java as in Tripwire Enterprise agents.
This is a rather outdated approach to software creation and creates some security problems. Java and the Java Runtime Environment (JRE) is well known for its high frequency of updates to patch security flaws and vulnerabilities.
Keeping the JRE up to date on all Tripwire monitored devices will be a task in itself!
2. NNT Change Tracker includes change noise reduction capabilities, known as F.A.S.T, which Tripwire Enterprise lacks.
One of the significant challenges with any file integrity monitoring solution is sifting through the deluge of change alerts, particularly when a server operating system is being updated. For example, Windows Update. NNT F.A.S.T is a cloud-based database containing billions of known changes which are used to subdue distracting change alerts.