|
|
Colapse all |
Post message
Workshop on the Analysis of System Logs (WASL) 2009 2009-06-16 Greg Bronevetsky (greg bronevetsky com) An insider attack scenario 2009-06-10 pamaclark yahoo com (8 replies) Hi, I'm new to IDS/IPS... Suppose a company has a large network, which is divided into several sub-network segments. Due to finance or staffs restrictions, the company could only use a limited number of sensors, hence leave some internal sub-networks unmonitored. I guess this is quite common in re [ more ] [ reply ] AW: Need help/info 2009-06-09 Daniel, Akos (a daniel drillisch-telecom de) Hi ubernewbie, I tried the "freeword's toolset" (snort, base, barnyard2, mysql, oinkmaster) that was a wonderful journey. :-) What I did is already ready here as well in one image: http://www.securixlive.com/securix-nsm/index.php Tested with Virtualbox, great tools are packed here and this is up-t [ more ] [ reply ] Fingerprinting IDS sensors? 2009-06-08 Chen, Hao (chenhao927 gmail com) (4 replies) Hi, I'm wondering if it is possible for an attacker to know/aware that a target site has already had IDS products deployed? If yes, how? An example would help, Thanks a lot! Regards [ more ] [ reply ] Automatic generation and Analysis of NIDS Attacks 2009-05-28 caglar (caglar ulakbim gov tr) Dear all, I am looking for a tool like AGENT to test my NIDS like: http://pages.cs.wisc.edu/~shai/agent.html and it should also generate attack traffic packets. I'd appreciate for any kind of help. Sincerely -- =*=*=*=*=*=*=*=*=*=*=*=*=*=*=*= Caglar Gulcehre TUBITAK - ULAKBIM Phone: +90 312 [ more ] [ reply ] Announcing Realeyes IDS 0.9.5 2009-05-26 jjs_ritasa verizon net The latest release of the Realeyes IDS (http://realeyes.sourceforge.net/) has been loaded on SourceForge. See the download page (http://realeyes.sourceforge.net/download.html) for information on downloading and installing it. The Realeyes IDS captures and analyzes full sessions. The graphical us [ more ] [ reply ] AW: Need help/info 2009-05-26 Daniel, Akos (a daniel drillisch-telecom de) Hi, It is the same for me. I need to plan and deploy an IPS/IDS system for our hup-spoke sites. But I think I may not spend any time with self installed free product. Till I setup basic things required for IPS: - Event Correlation - Alert Setup - Some/default Reports - Automatic updates (1. Signatu [ more ] [ reply ] Need help/info 2009-05-20 ubernewbie (duppyconqueror33 gmail com) (4 replies) I work for a small company with a hub/spoke network. I've been tasked with setting up an IDS(Snort) to begin monitoring security related events and basically build out a security program/infrastructure. Do any of you have any good sites/forums that go into the process of intrusion detection. I can [ more ] [ reply ] Workshop on the Analysis of System Logs (WASL) 2009 2009-05-20 Greg Bronevetsky (greg bronevetsky com) |
|
Privacy Statement |
http://www.systemloganalysis.com Call for Papers
===============================
October 14, 2009
Big Sky, MT
(at SOSP)
==
[ more ] [ reply ]