[Intrusions] Looking for good correlation software.
Kyle Maxwell
krmaxwell at gmail.com
Thu Sep 2 14:21:54 GMT 2004
On Thu, 02 Sep 2004 11:49:03 +0000, DAN MORRILL <dan_20407 at msn.com> wrote:
> I don't know of any freeware, but there was a project out on sourceforge
> about a year ago. I don't know what the stats is. Start there and wander
> around, there are alternatives.
Take a look at OSSIM (http://www.ossim.net/ is down at the moment, a
mirror is available at http://rules.ossim.net/ and the SF page is
http://sourceforge.net/projects/os-sim/. It integrates data from a lot
of different sources, including Unix servers and SNORT.
--
Kyle Maxwell
[krmaxwell at gmail.com]
More information about the Intrusions
mailing list