Honeypots mailing list archives
Re: honeywall roo compilation of daily snort alerts
From: Hugo Francisco González Robledo <hugo.gonzalez () itslp edu mx>
Date: Tue, 18 Apr 2006 09:36:37 +0000
maybe you want to use ACID to analyse the snort information. You need mysql, apache and php to get work ACID, but it's great. regards! On Mon, Apr 17, 2006 at 06:09:13PM -0600, mat wrote:
is there any way to do a day to day listing of all the snort allerts, sorted by how serious they are. for example, i get like hundreds of udp port 0 and the ms-sql attacks, but how can i sift through to see some interesting attacks? thanks in advance. mat
-- Hugo Francisco González Robledo Instituto Tecnológico de San Luis Potosí Llave pública en http://ardilla.zapto.org Excelente año 2006! ------------------------------------------- Educación es lo que queda después de olvidar lo que se ha aprendido en la escuela. Albert Einstein -------------------------------------------
Current thread:
- honeywall roo compilation of daily snort alerts mat (Apr 17)
- Re: honeywall roo compilation of daily snort alerts Hugo Francisco González Robledo (Apr 18)
- Re: honeywall roo compilation of daily snort alerts Kevin Johnson (Apr 19)
- Re: honeywall roo compilation of daily snort alerts Mark Ryan del Moral Talabis (Apr 19)
- Re: honeywall roo compilation of daily snort alerts Hugo Francisco González Robledo (Apr 18)