IDS mailing list archives

RE: Correlation software

From: "AJ Butcher, Information Systems and Computing" <Alex.Butcher () bristol ac uk>
Date: Wed, 24 Mar 2004 12:04:40 +0000



--On 19 March 2004 17:21 -0800 Joe Luna <joe.luna () kinkos com> wrote:

Is anyone aware of any open source (free..) event correlation packages,
or an initiative to develop such a beast?

I'm currently looking to use OS-SIM <http://www.ossim.net> to correlatealerts generated by Snort NIDS sensors with the results of Nessusvulnerability scans. <http://logreport.org/> also looks interesting to me.


Best Regards,
Alex.
--
Alex Butcher: Security & Integrity, Personal Computer Systems Group
Information Systems and Computing             GPG Key ID: F9B27DC9
GPG Fingerprint: D62A DD83 A0B8 D174 49C4 2849 832D 6C72 F9B2 7DC9



---------------------------------------------------------------------------

---------------------------------------------------------------------------

Current thread:

RE: Correlation software, (continued)
- RE: Correlation software Chris Petersen (Mar 23)
  - RE: Correlation software Tadeo Cwierz (Mar 25)
- Re: Correlation software Rainer Duffner (Mar 23)
- Re: Correlation software Johann_van_Duyn (Mar 19)
- RE: Correlation software Phil Hollows (Mar 19)
- RE: Correlation software Chris Kirschke (Mar 19)
  - Re: Correlation software Raffael Marty (Mar 22)
  - RE: Correlation software Alberto Gonzalez (Mar 22)
- RE: Correlation software Mariusz Burdach (Mar 22)
- RE: Correlation software Joe Luna (Mar 22)
  - RE: Correlation software AJ Butcher, Information Systems and Computing (Mar 25)
  - Re: Correlation software David Chapdelaine (Mar 25)
- RE: Correlation software DeGennaro, Gregory (Mar 23)
- RE: Correlation software Phil Hollows (Mar 23)