IDS mailing list archives
Re: how to verify whether an attack attempt is successful?
From: "Yan Zhai" <yzhai () unity ncsu edu>
Date: Wed, 15 Jan 2003 17:32:43 -0500
The out put of IDS are a number alerts on different attack signatures, among those signatures, some of them are the signatures of successful attacks (e.g. backdoor), some of them are attack attempts. And I am interested in whether there's any automatic tools/technology to analysis those attempts and decide whether they are successful. -Yan ----- Original Message ----- From: "Maher Odeh" <rax () netvision net il> To: "Yan Zhai" <yzhai () unity ncsu edu>; <focus-ids () securityfocus com> Sent: Wednesday, January 15, 2003 5:05 PM Subject: RE: how to verify whether an attack attempt is successful?
Hello Yan Your question isn't clear enough, do you want to know if the attack is
successful from the client or the victim side ?
and what type of attack ? do you mean some sort of tripwire that checks if
files changed then alert the victim
or do you mean some sort of acknowledgment on some sort of attack to the
attacker ? please be more clear
Thanks -----Original Message----- From: Yan Zhai [mailto:yzhai () unity ncsu edu] Sent: Mon 1/13/2003 6:59 PM To: focus-ids () securityfocus com Cc: Subject: how to verify whether an attack attempt is successful? Is there any technology developed in this direction?
Current thread:
- how to verify whether an attack attempt is successful? Yan Zhai (Jan 15)
- Re: how to verify whether an attack attempt is successful? Huagang XIE (Jan 16)
- Re: how to verify whether an attack attempt is successful? Jose Nazario (Jan 16)
- Re: how to verify whether an attack attempt is successful? Kurt Seifried (Jan 16)
- <Possible follow-ups>
- RE: how to verify whether an attack attempt is successful? detmar . liesen (Jan 17)
- RE: how to verify whether an attack attempt is successful? Ron Gula (Jan 20)
- Re: how to verify whether an attack attempt is successful? Scott Wimer (Jan 21)
- Re: how to verify whether an attack attempt is successful? Yan Zhai (Jan 19)