Snort mailing list archives
Re: Recommendation for IDS reporting tools?
From: sam wun <sam.wun () authtec com>
Date: Wed, 16 Mar 2005 22:08:29 +0800
Jeff Dell wrote:
i tried to set it up before, but it was not successful. I stay up days and nights tried to link up the configuraiton between snort, mysql and activeworx(aw), but I don't found a easy way to setup it up to work for all three components. May I suggest aw provide a script to allow user setup backend Snort, MySQL DB, and front-end aw smoothly?<marketing> I don't like to market in this public forum, but I thought I should briefly mention a tool that I developed to do exactly what you are looking for. Activeworx Security Center (ASC) has details for the analyst and a high level reporting engine for the executives. It will also interface directly with your existing Snort databases. Check it out at www.activeworx.com.
Sam.
</marketing> Cheers, Jeff-----Original Message-----From: snort-users-admin () lists sourceforge net [mailto:snort-users-admin () lists sourceforge net] On Behalf Of HugoSent: Tuesday, March 15, 2005 12:45 PM To: Mark Teicher; snort-users () lists sourceforge net Subject: Re: [Snort-users] Recommendation for IDS reporting tools?I'm looking at both types of reporting tools. I need management reports as well as a interface for technicians to troubleshoot and investigate.Hugo Mark Teicher <mht3 () earthlink net> wrote:Really depends on your reporting needs. Are you looking forDilbert type reports (i.e. Executive management reports) with the glossy photos with circle and arrows with a summary description on the bottom? Or are you looking for meaningful reports one can hand off to a technical person to investigate and resolve?Commercial or Open Source are both ok. I am using BASE currently, and I have also tested SnortSnarf... neither of them offers a complete solution to me. BASE works great until I find out Src IP doesn't sort properly. Has anybody tried Aanval? Any testimonial? THanks in advance!-----Original Message----- From: Hugo <hchlai () netscape net> Sent: Mar 15, 2005 10:15 AM To: snort-users () lists sourceforge net Subject: [Snort-users] Recommendation for IDS reporting tools?Can anybody recommend a real-time IDS reporting tool for me?Hugo
------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Recommendation for IDS reporting tools? Hugo (Mar 15)
- Re: Recommendation for IDS reporting tools? Esler, Joel CNTR/Sytex (Mar 15)
- Re: Recommendation for IDS reporting tools? Alex Butcher, ISC/ISYS (Mar 16)
- <Possible follow-ups>
- Re: Recommendation for IDS reporting tools? Hugo (Mar 15)
- RE: Recommendation for IDS reporting tools? Jeff Dell (Mar 15)
- Re: Recommendation for IDS reporting tools? sam wun (Mar 16)
- RE: Recommendation for IDS reporting tools? Jeff Dell (Mar 16)
- RE: Recommendation for IDS reporting tools? Jeff Dell (Mar 15)
- Re: Recommendation for IDS reporting tools? Hugo (Mar 16)
- RE: Recommendation for IDS reporting tools? Basselgia, Barry A Mr (NAF Atsugi) (Mar 16)
- RE: Recommendation for IDS reporting tools? Hugo (Mar 17)
- Re: Recommendation for IDS reporting tools? Mark Teicher (Mar 21)