Snort mailing list archives
Re: SnortAV?
From: Jason <security () brvenik com>
Date: Thu, 28 Dec 2006 20:05:10 -0500
jrhendri () maine rr com wrote:
I would agree that testing a host after the fact is inherently prone to error. Does anyone know of any effort to integrate IDS with scanner output to achieve a (potentially more accurate) result? Something like doing daily nessus scans and tailoring snort output to alert for systems that were (potentially) vulnerable as of the last scan could be beneficial.
http://www.shmoo.com/~bmc/software/honeysuckle ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- SnortAV? John Hally (Dec 28)
- Re: SnortAV? purplebag (Dec 28)
- Re: SnortAV? jrhendri (Dec 28)
- Re: SnortAV? Jason (Dec 28)
- Re: SnortAV? Paul Schmehl (Dec 28)
- Re: SnortAV? jrhendri (Dec 28)
- <Possible follow-ups>
- Re: SnortAV? John Hally (Dec 29)
- Re: SnortAV? purplebag (Dec 28)