IDS mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Snort test logs available?

From: "Bill Royds" <Bill () royds net>
Date: Sat, 26 Apr 2003 14:12:04 -0400
SANS has a repository of Snort logs for use in the GCIA intrusion detection
certification at
http://www.incidents.org/logs/Raw

These are tcdump format files from a Snort installation. They only reflect
packets that triggered the alerts.



----- Original Message ----- 
From: "Shwaine" <shwaine () shwaine com>
To: <focus-ids () securityfocus com>
Sent: Friday, April 25, 2003 5:28 AM
Subject: Snort test logs available?


: Hi all,
:
: I am currently involved in a research project as part of my thesis
: research that uses Snort log data. Right now, we are trying to make
: sure our tools work well on a wide variety of Snort logging formats
: and versions. To this end, I was wondering if there are any public
: repositories of Snort logs which we could use to test our tools.
:
: Melissa Danforth
: UC Davis Seclab
:
:
:
: --------------------------------------------------------------------------
----
: INTRUSION PREVENTION: READY FOR PRIME TIME?
:
: IntruShield now offers unprecedented Intrusion IntelligenceTM
capabilities -
: including intrusion identification, relevancy, direction, impact and
analysis - enabling a path to prevention.
:
: Download the latest white paper "Intrusion Prevention: Myths, Challenges,
and Requirements" at: http://www.securityfocus.com/IntruVert-focus-ids
:
:


------------------------------------------------------------------------------
INTRUSION PREVENTION: READY FOR PRIME TIME?
 
IntruShield now offers unprecedented Intrusion IntelligenceTM capabilities - 
including intrusion identification, relevancy, direction, impact and analysis - enabling a path to prevention. 
 
Download the latest white paper "Intrusion Prevention: Myths, Challenges, and Requirements" at: 
http://www.securityfocus.com/IntruVert-focus-ids
Previous By Date Next
Previous By Thread Next

Current thread: