IDS mailing list archives

Previous By Date Next
Previous By Thread Next

Tool Announce : LogIDS 2.0

From: "SecurIT Informatique Inc." <securit () iquebec com>
Date: Mon, 03 Nov 2003 04:48:36 -0500
Hello all.
This is to announce the release of the latest version of LogIDS, which is now at version 2.0, available at http://securit.iquebec.com both as Open Source and commercial downloads.
LogIDS is a real-time log analysis intrusion detection console for Windows NT/2K/XP. The program lets you define the fields for each log you want to monitor, and then you can use these fields to build a ruleset to alter LogIDS behaviour. The graphical interface presents you with a logical representation of your network map, where each node (host or subnet) have its own little log viewing window. An icon is also displayed, which can be used to picture the action represented in the logged item. Sounds alerts are also supported. Logs can come from any source you want, firewalls, personal firewalls, antivirus, Snort, SITDk 1.0, etc...
Changes from the last version for the Open Source version : very little changes in fact; logids\backup directory is now moved logids\log\backup for cross-compatibility reasons. Screenshot here http://iquebec.ifrance.com/securit/image/figure1.gif.
Changes from the last version for the commercial version : same directory move as the Open Source version, improved rule matching performance, extraneous stuff now moved into the SIDTk 1.0, clickable icons on the network map to open bigger viewing windows. The commercial version also have automatic pop-up windows for ComLog sessions (ComLog is a command prompt logger) over the Open Source one. Screenshot here http://iquebec.ifrance.com/securit/image/figure6.gif.
The commercial version comes with a 5-machines evaluation license, no time-limit. 

Adam Richard
SécurIT Informatique Inc.
http://securit.iquebec.com/


---------------------------------------------------------------------------
Network with over 10,000 of the brightest minds in information security
at the largest, most highly-anticipated industry event of the year.
Don't miss RSA Conference 2004! Choose from over 200 class sessions and
see demos from more than 250 industry vendors. If your job touches
security, you need to be here. Learn more or register at
http://www.securityfocus.com/sponsor/RSA_focus-ids_031023 
and use priority code SF4.
---------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: