IDS mailing list archives
[ANNOUNCE]: Prelude Hybrid IDS suite 0.9.0 released
From: Yoann Vandoorselaere <yoann.v () prelude-ids com>
Date: Tue, 20 Sep 2005 15:02:22 +0200
PreludeIDS Technologies is pleased to announce the immediate availability of the Prelude Hybrid IDS Framework 0.9 release, which represents the culmination of many years of development, creating a full solution to your IDS needs. ------[ What's new in 0.9 ? ]------ Many new features and improvements have been made on the various parts of the Prelude Framework, including the enhancement of the Prelude underlying architecture for increased performance and reliability, as well as support for many additional types of devices and logs. The newly developed Prewikka front-end has been designed to be a highly informative interface to all the various functionality offered by the Prelude Framework. Other security and access products have included support for the Prelude Framework in their products. A few examples are Snort NIDS, and Samhain. Upcoming support is underway for Sancp, Shadow IDS and Mwcollect. More information about this release is available at: http://www.prelude-ids.org/article.php3?id_article=124 ------[ What is Prelude Hybrid IDS ? ]------ Prelude was born from the observation that more and more IDS systems exist each with their own focus, but no framework exists in order to unify and centralize events provided by these different systems. We believe that relying on a single source of information in order to do security analysis is not sufficient, since different analysis methods have different advantages, and that unifying these methods in a strong and powerful product is the only way to produce a comprehensive security analysis tool. Prelude is a Hybrid IDS framework, that is, a product enabling all security applications, be it open-source or proprietary, to report to a centralized system. In order to achieve this task, Prelude relies on the IDMEF (Intrusion Detection Message Exchange Format) IETF standard, that enables different kinds of sensors to generate events using a unique language. Prelude provides a C, Python, and Perl framework so that you can convert existing security applications to use the Prelude Framework. It also provides sensors such as a log analyzer (Prelude-LML). A Prelude sensor is a program which has the ability to use the Prelude Framework. Prelude benefits from its ability to find traces of malicious activity from different sensors (Snort, honeyd, Nessus Vulnerability Scanner, Samhain, hundred of systems logs, and many others) in order to better verify attack vectors and in the end to perform automatic correlation between the various events. Prelude is licensed under the terms of the GNU General Public License version 2 and is available from http://www.prelude-ids.org/. PreludeIDS Technologies provides commercial licenses of software libraries “Libprelude” & “Libpreludedb”, in order to enable the developement of interoperable proprietary solutions. ------[ Commercial Support ]------ The PreludeIDS Technologies company, which develops the Prelude Intrusion Detection System, provides corporate level support and development. While providing the core components of the system under the Open Source development model, it also offers additional products and custom development geared to the needs of larger corporate clients. The company, already present in many types of industries, is particularly focused on providing expertise regarding ID&P (Intrusion Detection and Prevention) for medium to large sized infrastructures (multinational, telecoms, etc), entities handling highly confidential data (military, banks, etc) and networks with remote access (e-learning, telecommuting, etc.) Today, in close cooperation with its worldwide Certified Partners, PreludeIDS Technologies brings its Prelude expertise via a broad range of products and services: - PrewikkaPro professional front-end. - Increased database performance for corporate users. - Commercial licenses for Prelude library. - Prelude system customization. - Software maintenance and technical support. - Deployment, Integration. - Consulting, Training, etc. See http://www.prelude-ids.com for more information. ------[ Documentation ]------ The Prelude Handbook is a collaborative effort trying to come up with a complete Prelude-IDS documentation covering architecture, installation, and configuration instruction. It is the most up-to-date documentation at this time, and cover Prelude-IDS 0.9. https://trac.prelude-ids.org/wiki/PreludeHandbook ------[ Downloading ]------ All component of the Prelude hybrid IDS suite 0.9.0 can be downloaded from our website: http://www.prelude-ids.org/rubrique.php3?id_rubrique=6 Support for Prelude 0.9.0 is upcoming for Sancp, SHADOW, and Mwcollect. -- Yoann Vandoorselaere | Responsable R&D / CTO | PreludeIDS Technologies Tel: +33 (0)8 70 70 21 58 Fax: +33(0)4 78 42 21 58 http://www.prelude-ids.com ------------------------------------------------------------------------ Test Your IDS Is your IDS deployed correctly? Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 to learn more. ------------------------------------------------------------------------
Current thread:
- [ANNOUNCE]: Prelude Hybrid IDS suite 0.9.0 released Yoann Vandoorselaere (Sep 21)