Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Sagan 0.1.0 released [Snort like log analysis engine]

From: CunningPike <cunningpike () gmail com>
Date: Wed, 30 Jun 2010 14:56:48 -0700
On Fri, Jun 25, 2010 at 9:08 AM, Champ Clark III [Softwink]
<champ () softwink com> wrote:


       Hello,

       I've released a tool that will take log information (syslog,
snmptrapd, etc) and store to a Snort database.   This basically allows
you to store security relevant log data and store it to your Snort
databases.   Sagan will also attempt to corralate events with your
IDS/IPS.  Here's the generic run down of the applications.

--<snip>---



Sounds like it's begging for a sguil agent to be written for it....

CP

------------------------------------------------------------------------------
This SF.net email is sponsored by Sprint
What will you do first with EVO, the first 4G phone?
Visit sprint.com/first -- http://p.sf.net/sfu/sprint-com-first
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: