Hosting Provided By

RE: IDS and forensics

From: Kowalski, Thomas TL26C <Thomas.Kowalski(at)CIGNA.COM>
Date: Fri Jan 24 2003 - 16:07:42 EST

Actually, check out this software. Its called Demarc/PureSecure. http://www.demarc.com/ Free for personal use, not to bad for commercial use. Its basically a nice web front end with Snort as the IDS. It relies on mysql as the data warehouse. I've been using for several months, and its been nothing short of fantastic.

Thomas Kowalski, Security Compliance Officer Group Insurance Systems, Application Development Support Routing TL26C

215.761.8872 (phone)
609.254.2138 (cell) 
215.761.5618 (fax)

thomas.kowalski@cigna.com

"SCIENTIA EST POTENTIA" Confidential, unpublished property of CIGNA. Do not duplicate or distribute.
Use and distribution limited solely to authorized personnel. (c) Copyright 2003 (CIGNA)

-----Original Message-----
From: perrieror@ssginfo.montclair.edu
[mailto:perrieror@ssginfo.montclair.edu] Sent: Friday, January 24, 2003 11:49 AM
To: keydet89@yahoo.com
Cc: forensics@securityfocus.com
Subject: Re: IDS and forensics

Seems to me that this is the software that you are looking for.

http://www.nswc.navy.mil/ISSEC/CID/index.html its called shadow. does IDS and also logs all the packets. Seems very configurable to me.

Robert Perriero
Montclair State University
Systems and Security Group

> I'm interested in other's views of network IDS systems

This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com

CONFIDENTIALITY NOTICE: If you have received this e-mail in error, please immediately notify the sender by e-mail at the address shown. This e-mail transmission may contain confidential information. This information is intended only for the use of the individual(s) or entity to whom it is intended even if addressed incorrectly. Please delete it from your files if you are not the intended recipient. Thank you for your compliance. Copyright (c) 2003 CIGNA

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


-----------------------------------------------------------------

This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com Received on Fri Jan 24 17:36:28 2003

Do you need help?

This message: [ Message body ]
Next message: Dave Mitchell: "Re: IDS and forensics"
Previous message: Jason Coombs: "RE: CRC32 vd MD5"
Maybe in reply to: H C: "IDS and forensics"
In reply to Kelly, Lee: "RE: IDS and forensics"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:01:42 EDT