Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
Sebek 3: tracking the attackers, part one
Raul Siles, GSE

Comments Mode:
Sebek 3: tracking the attackers, part one 2006-01-20
Anonymous (1 replies)
This is an excellent article, thank you! I still need to read you article a little closer, so maybe I missed this on the first scan, but it looks like Sebek might be used with a database of suspicious behavior to provide deep intrusion detection. Or I may be completely misunderstanding its capabil...

[ more ]  [ reply ]
Re: Sebek 3: tracking the attackers, part one 2006-01-24
Raul Siles
Thanks a lot for your support! Sorry but there are no direct intrusion detection capabilities on Sebek. Sebek provides the data that allows to inspect and correlate the intrusions detected by other mechanisms, such as through the Snort NIDS. Both tools run inside the GenIII Honeywall and its data is...

[ more ]  [ reply ]
Sebek 3: tracking the attackers, part one 2006-08-17
soneedu (1 replies)
Can Sebek client 2.05.03 for Solaris 9 work with Sebek server 3 well??

Is there new version sebek client for Solaris???

thanks!...

[ more ]  [ reply ]
Re: Sebek 3: tracking the attackers, part one 2006-11-25
Raul Siles
Unfortunately, Sebek 2.x client versions cannot work with Sebek 3.x server versions, mainly because the Sebek protocol version and datagram format changed (not being backwards compatible).

There is no new Sebek version for Solaris. You can check the latest versions at http://honeynet.org/tools/se...

[ more ]  [ reply ]




 

Privacy Statement
Copyright 2009, SecurityFocus