[unisog] Security Event Correlation and Response

Christopher Arnold christopher.arnold at tufts.edu
Sat Mar 27 03:26:13 GMT 2004

netForensics.  ArcSight.  Network Intelligence.  All expensive options though.

Rolling your own is a worthwhile (and educational) option but is a decidedly
non-trivial exercise.


Quoting Gary Flynn <flynngn at jmu.edu>:

> Do any of you have any home grown or commercial
> products you'd recommend?
> -- 
> Gary Flynn
> Security Engineer - Technical Services
> James Madison University

Christopher Arnold
Team Leader, Network Security
Tufts University
christopher.arnold at tufts.edu

More information about the unisog mailing list