Based on our record, Wazuh should be more popular than RANCID. It has been mentiond 49 times since March 2021. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
A decade ago I worked for a shop that needed to routinely back up 100+ cisco switches and routers and refused to pay for solarwinds. I setup a light weight freebsd vm to run this open source software: https://shrubbery.net/rancid/ (Rancid: Really Awesome New Cisco config Differ) and set it to scrape all the equipment every 12 errors. Source: over 1 year ago
Anyways Rancid does support cvs, svn, and git. Though I have only used it with cvs. Basically what it does, is checks out the configuration, downloads the configuration with other information about the state of the device, commits the configurations(which only changed ones will be in the latest check-ins, and then it can send an email of the changes. Source: about 2 years ago
RANCID - Really Awesome New Cisco confIg Differ monitors a router's (or more generally a device's) configuration, including software and hardware (cards, serial numbers, etc) and uses CVS (Concurrent Version System), Subversion or Git to maintain history of changes. Source: about 2 years ago
If you want to use this as an opportunity to learn Ansible, or you don't want to add another tool to the stack, this is a fine use case. Otherwise, I would consider using either RANCID or Oxidized for configuration backup. Source: about 2 years ago
Before I knew about RANCiD (https://shrubbery.net/rancid), I wrote my own Perl application to telnet into a Foundry Networks switch and TFTP its configuration to my computer so I could back it up. At a future employer, I rewrote another coworkers Perl application that collected SNMP values from devices and did stuff with it (forget what all I did then). Source: over 2 years ago
I use Wazuh instead. Greenbone CE is severely limited and requires payment for anything beyond the very basic. Super simple installation more features. Source: 7 months ago
Monitoring & Active Measures - Exporting firewall events to an external time-series database like I describe above is good to see who is touching your firewall or accessing your web site. Using an Intrusion Detection System / Intrusion Prevention System (IDS/IPS) such as open-source Suricata, which is a free package on pfSense, and deploying file system integrity monitoring, such as the open-source Wazuh on the... Source: 8 months ago
Wazuh: An open source security monitoring platform that integrates with popular tools like Elasticsearch and Kibana to provide comprehensive security event analysis and response capabilities. - Source: dev.to / about 1 year ago
On another note, as mentioned in my response to the question of this post, we are working on a complete rework of the Vulnerability Detection engine. This rework will provide a sanitized CVEs feed from wazuh.com and a completely new scanner engine. It will also include a new UI for global queries. Source: about 1 year ago
Nessus essentials (https://www.tenable.com/products/nessus/nessus-essentials) might do the trick. It can help to check what kind of services you are running are vulnerable to exploits. Also, the general recommendation here would be not to use default ports for all the services you are exposing. Also, you can check something like Wazuh - https://wazuh.com/. Source: about 1 year ago
Unimus - Unimus is a Network Automation and Configuration management (NCM) solution designed for fast deployment network-wide and ease of use. Unimus does not require learning any abstraction or templating languages, and does not require any coding skills.
Zabbix - Track, record, alert and visualize performance and availability of IT resources
Oxidized - configuration backup software (IOS, JunOS) - silly attempt at rancid
Fortinet FortiAnalyzer - Fortinet FortiAnalyzer is a powerful product for Security Fabric Analytics and Automation.
GenieACS - A fast and lightweight TR-069 Auto Configuration Server (ACS)
Beats - Beats is the platform for single-purpose data shippers that is installed as lightweight agents and send data to machines to Logstash or Elasticsearch.