Re: Host Based IDSOct 21 2008 08:18AM Stefano Zanero (s zanero securenetwork it)
Rodrigo Montoro(Sp0oKeR) wrote:
> I agree with Stefano about your tests (nids, hids, pattern matching,
> anomaly is to difficult to compare =D ). I just wanna add some points
> about OSSEC
Just to clarify, since this is not the only message I received: I was
not diminishing Daniel's work in any way (in fact I'm quite a fan of
OSSEC myself :), just pointing out the different types of sources and
analysis mechanisms involved by the listed products.
Is your IDS deployed correctly?
Find out quickly and easily by testing it
with real-world attacks from CORE IMPACT.
Go to http://www.coresecurity.com/index.php5?module=Form&action=impact&campaig
n=intro_sfw
to learn more.
------------------------------------------------------------------------
> I agree with Stefano about your tests (nids, hids, pattern matching,
> anomaly is to difficult to compare =D ). I just wanna add some points
> about OSSEC
Just to clarify, since this is not the only message I received: I was
not diminishing Daniel's work in any way (in fact I'm quite a fan of
OSSEC myself :), just pointing out the different types of sources and
analysis mechanisms involved by the listed products.
Best,
Stefano
------------------------------------------------------------------------
Test Your IDS
Is your IDS deployed correctly?
Find out quickly and easily by testing it
with real-world attacks from CORE IMPACT.
Go to http://www.coresecurity.com/index.php5?module=Form&action=impact&campaig
n=intro_sfw
to learn more.
------------------------------------------------------------------------
[ reply ]