Hi
Sorry to be a nuisance but I'm looking for some information, I've had an
increasing number of emails asking about central consoles for IDS. I am
building a separate page to list them all, the criteria as I see it is
(though I'm open to suggestions)

They present information collected from remote IDS agents
and/or
They apply IDS signatures to input from other tools ie sniffers, routers,
firewalls etc
and/or
They accept input from other vendors tools at least one of which is an IDS.

I don't feel that tools which just centralize syslogs without adding any
analysis should be included.

Examples of consoles: SHADOW, ACID, ICEcap, KSE, AFJ, Dragon Server,
RealSecure Manager

I would also like to point out that I run the site as a service, it is still
unfunded and therefore unbiased and vendor independant. If you can spare
any time/knowledge it would be greatly appreciated.

I will also send this to the ids.au list and my own security-tools mailing
list, please accept my apologies if you receive the same mail from all 3

Take Care
Andy
http://www.networkintrusion.co.uk
Talisker's Network Security Tools List
                    '''
                 (0 0)
  ----oOO----(_)----------
  | The geek shall |
  | Inherit the earth |
  -----------------oOO----
               |__|__|
                  || ||
              ooO Ooo
taliskernetworkintrusion.co.uk

The opinions contained within this transmission are entirely my own, and do
not necessarily reflect those of my employer.

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]