yoann.lecorvicINFRASOFT-CIVIL.COM

• Next message: Jackson, John: "Re: Intrusion Detection Logfile Software"
• Previous message: Ron Gula: "Re: Intrusion Detection Logfile Software"
• Maybe in reply to: Wally Hass: "Intrusion Detection Logfile Software"
• Next in thread: Jackson, John: "Re: Intrusion Detection Logfile Software"
• Maybe reply: Yoann LeCorvic: "Re: Intrusion Detection Logfile Software"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi

I use Snort with AracNIDS coupled with SHADOW 1.6 for historical logging. SHADOW is using tcpdump to log all traffic, and pass it to an analysis workstation through ssh. The ananlysis station uses filters to display what you need and publishes it on an Apache Server.

Here is where you can get it

http://www.nswc.navy.mil/ISSEC/CID/

Cheers

Yoann Le Corvic - Internet Administrator
Email : yoann.lecorvicinfrasoft-civil.com
Web : http://www.infrasoft-civil.com/
========================
Infrasoft Ltd
North Heath Lane
Horsham, West Sussex RH12 5QE
United Kingdom
Tel : +44 (0)1403 259511
Fax : +44 (0)1403 217728

**********************************************************************
This email message, including any files transmitted with it, is
confidential and intended solely for the use of the individual or
entity to whom it is addressed. If you have received this email
in error please advise the sender and delete the message.
**********************************************************************

• Next message: Jackson, John: "Re: Intrusion Detection Logfile Software"
• Previous message: Ron Gula: "Re: Intrusion Detection Logfile Software"
• Maybe in reply to: Wally Hass: "Intrusion Detection Logfile Software"
• Next in thread: Jackson, John: "Re: Intrusion Detection Logfile Software"
• Maybe reply: Yoann LeCorvic: "Re: Intrusion Detection Logfile Software"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]