mailing list archives
Re: FW/IPS log correlation software
From: "Gleb Paharenko" <gpaharenko () gmail com>
Date: Sun, 6 Apr 2008 00:19:46 +0300
Netforensics SIM (http://www.netforensics.com/) can do this.
You can utilize OSSEC (www.ossec.net) for this purposes as well.
For cisco products perhaps it is better to use MARS
because their SIM is based on old Netforensics.
4 Apr 2008 13:55:40 -0000, mgk.mailing () googlemail com
<mgk.mailing () googlemail com>:
We have been looking at that for our own systems.
- RE: FW/IPS log correlation software, (continued)