Why should one need PT ISIM if there is Snort?

Модератор 4 years ago in FAQ updated 4 years ago 1

PT ISIM has wider functionality than Snort: is oriented to behavior analysis based on correlations and a network model. Another important feature of PT ISIM is its simple and user-friendly interface that provides the functions of monitoring, inventory, and investigation. The PT ISIM distribution kit also includes the PT ISTI expert knowledge base that contains information about threats to industrial security. The knowledge base is constantly updated by Positive Technologies specialists who have expertise both in network technologies and ICSs.