|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
RE: [Snort-users] ACID/BASE vs PRELUDE
From: Ron Jenkins (rjenkins
dibr.net)
Date: Mon Sep 19 2005 - 12:07:18 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
You may want to check out Aanval's IDS console, both limited version and
commercial licensed version. Very powerful!
-----Original Message-----
From: snort-users-adminlists.sourceforge.net
[mailto:snort-users-adminlists.sourceforge.net] On Behalf Of Gene R
Gomez
Sent: Monday, September 19, 2005 12:13 PM
To: snort-userslists.sourceforge.net; ddodgegmail.com
Subject: Re: [Snort-users] ACID/BASE vs PRELUDE
Heya,
Disclaimer: member of Prelude Hybrid IDS development team.
Prelude as a Snort management console depends a little bit on what you
mean as a management console. In terms of viewing alerts, it does a
great job of providing a consolidated interface for security events
across all of your platforms and devices.
If, however, you mean as a method for actual management (changing
configuration, stopping and restarting services, managing rules, etc),
Prelude probably won't give you what you're looking for (yet!).
Basic support for sensor management is present in Prelude 0.9 (which
goes stable within the next few days), but the interfaces aren't written
yet.
At any rate, Prelude's greatest strength is in presenting your Snort
alerts alongside your host-based alerts, your firewall alerts, and all
manner of other things. BASE appears to be more of an analytical engine
for Snort alone.
Gene R Gomez
On Aug 26, 2005, at 10:38 AM, ddodge wrote:
> All,
>
> Has anyone done a good comparision between BASE
> (http://secureideas.sourceforge.net/) and Prelude
> (http://www.prelude-ids.org/) as a managment console for Snort ?
-------------------------------------------------------
SF.Net email is sponsored by:
Tame your development challenges with Apache's Geronimo App Server.
Download
it for free - -and be entered to win a 42" plasma tv or your very own
Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php
_______________________________________________
Snort-users mailing list
Snort-userslists.sourceforge.net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
-------------------------------------------------------
SF.Net email is sponsored by:
Tame your development challenges with Apache's Geronimo App Server. Download
it for free - -and be entered to win a 42" plasma tv or your very own
Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php
_______________________________________________
Snort-users mailing list
Snort-userslists.sourceforge.net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]