OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: Stephenson, Peter (Peter.StephensonNETIGY.COM)
Date: Mon Jan 08 2001 - 15:16:23 CST

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    You might also look at AIDE (Advanced Intrusion Detection Environment) from
    Litton/PRC.

    --P

    ____________________________________________
    Peter Stephenson, CPE, PCE
    Director of Technology, Global Security
    Netigy Corporation
    Phone: +1-248-760-1152 - Fax: +1-248-373-9130
    PGP Public Key Available At:
     http://certserver.pgp.com:11371/pks/lookup?op=get&search=peter.stephenso
    n%40netigy.com
    If you keep heading in the direction you've always headed, you'll end up
    where you've always been.
    http://www.netigy.com Driving eBusiness PerformanceSM

    > -----Original Message-----
    > From: Talisker [mailto:TaliskerNETWORKINTRUSION.CO.UK]
    > Sent: Monday, January 08, 2001 1:22 PM
    > To: FOCUS-IDSSECURITYFOCUS.COM
    > Subject: IDS Central Consoles
    >
    >
    > Hi
    > Sorry to be a nuisance but I'm looking for some information,
    > I've had an
    > increasing number of emails asking about central consoles for
    > IDS. I am
    > building a separate page to list them all, the criteria as I see it is
    > (though I'm open to suggestions)
    >
    > They present information collected from remote IDS agents
    > and/or
    > They apply IDS signatures to input from other tools ie
    > sniffers, routers,
    > firewalls etc
    > and/or
    > They accept input from other vendors tools at least one of
    > which is an IDS.
    >
    > I don't feel that tools which just centralize syslogs without
    > adding any
    > analysis should be included.
    >
    > Examples of consoles: SHADOW, ACID, ICEcap, KSE, AFJ, Dragon Server,
    > RealSecure Manager
    >
    > I would also like to point out that I run the site as a
    > service, it is still
    > unfunded and therefore unbiased and vendor independant. If
    > you can spare
    > any time/knowledge it would be greatly appreciated.
    >
    > I will also send this to the ids.au list and my own
    > security-tools mailing
    > list, please accept my apologies if you receive the same mail
    > from all 3
    >
    > Take Care
    > Andy
    > http://www.networkintrusion.co.uk
    > Talisker's Network Security Tools List
    > '''
    > (0 0)
    > ----oOO----(_)----------
    > | The geek shall |
    > | Inherit the earth |
    > -----------------oOO----
    > |__|__|
    > || ||
    > ooO Ooo
    > taliskernetworkintrusion.co.uk
    >
    > The opinions contained within this transmission are entirely
    > my own, and do
    > not necessarily reflect those of my employer.
    >