Snort mailing list archives
Re: Midas
From: Brian <bmc () snort org>
Date: Thu, 17 Jul 2003 09:11:24 -0400
On Tue, Jul 15, 2003 at 10:29:43AM -0500, Banniza Robert wrote:
Is anyone using the Midas stuff? It looks like Snort on steroids from the freshmeat page. I haven't had a lot of time to investigate. What are your opinions from the folks using it?
FYI, for those that have heard me speak about MIDAS in the past, this isn't it. I was speaking about was speaking about MITRE's Intrusion Detection Analysis System, an awesome IDS analysis console that I had a large hand in while I was at MITRE. [0]
From the demo available online, it seems limited in terms of functionality.
Configuration management is absent and event display doesn't seem to be searchable. You would be better off with one of the many other UIs available. Cerebus would be a much better bet. [1] -brian [0] http://www.mitre.org/news/digest/defense_intelligence/12_02/di_midas_touch.html [1] http://www.dragos.com/cerebus/ ------------------------------------------------------- This SF.net email is sponsored by: VM Ware With VMware you can run multiple operating systems on a single machine. WITHOUT REBOOTING! Mix Linux / Windows / Novell virtual machines at the same time. Free trial click here: http://www.vmware.com/wl/offer/345/0 _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Midas Banniza Robert (Jul 15)
- Re: Midas Brian (Jul 17)