Re: Snort Anomaly Detection

[Bernhard Guillon <Bernhard.Guillon () opensimpad org>]

On 17.09.2010 15:24, Bernhard Guillon wrote:
> On 14.09.2010 08:48, Sandro guly Zaccarini wrote:
>    
> > > I also have written an open source
> > > anomaly traffic generator to create a more up to date dataset and tested
> > > the implementation with it. I am currently cleaning it up for
> > > publishing. It uses Virtual Machines some simulation theorie and Python.
> > > It supports modules for "normal" traffic generation
> > > (Firefox,email,Skype,FTP) and anomaly traffic generation (metasploit,
> > > nmap, and arpspoof).
> > >
> > >        
> > seems very interesting :)
> >
> >
> >      
> Thanks! I hope to find enough time to release it next week :)
>
>    


Ok, here [1] it is :)

I will upload some generated pcap files and logs later. Also I plan to 
upload virtual appliances. It's currently a beta release.

Best regards
Bernhard Guillon

1 http://pynetsim.sf.net

------------------------------------------------------------------------------
Start uncovering the many advantages of virtual appliances
and start using them to simplify application deployment and
accelerate your shift to cloud computing.
http://p.sf.net/sfu/novell-sfdev2dev
_______________________________________________
Snort-devel mailing list
Snort-devel () lists sourceforge net
https://lists.sourceforge.net/lists/listinfo/snort-devel