[KLUG Members] Re: Data Analysis tools for Snort
byte snagger
members@kalamazoolinux.org
21 Mar 2003 18:35:52 -0500
Sanjay,
The answer you are looking for is the Analysis Console for Intrusion
Databases (ACID). ACID "is a PHP-based analysis engine to search and
process a database of security events generated by various IDSes,
firewalls, and network monitoring tools." Runs on both Linux and
Windows platforms. I use it at home and at work.
The URL is http://www.cert.org/kb/acid/ (last checked March 21, 2003)
Additional Snort IDS links:
http://www.snort.org - home of the Snort IDS
http://www.demarc.com - commercial release of Snort with a web-based
management interface. Free version for personal use is available.
http://www.packx.net/packx/html/en/index-en.htm - A free Snort and ACID
installer for Windows with a management GUI, including: Snort 1.9 Build
227, IDScenter 1.1 RC2, Apache 1.2.27, PHP 4.3.0, MySQL 3.23.55, ACID
0.9.6b23, and JPGraph 1.9.1.
> Message: 4
> To: members@kalamazoolinux.org
> From: "Sanjay Chigurupati" <Sanjay.Chigurupati@lntinfotech.com>
> Date: Thu, 20 Mar 2003 09:14:09 +0530
> Subject: [KLUG Members] Data Analysis tools for Snort
> Reply-To: members@kalamazoolinux.org
>
>
> Hi,
> I am using snort and looking for data analaysis tools for snort. I would
> appreciate all input.
>
> Thx,
> Sanjay
>
>
>
> --__--__--
>
> _______________________________________________
> Members mailing list
> Members@kalamazoolinux.org
>
>
>
> End of Members Digest
--
. .. ... ... .... ....... ..... .... ... .. .
A candle loses nothing by lighting another.
-Internet
bytesnagger@attbi.com
. .. ... .... ......... ..... .. . .... ... .