http://www.securitywizards.com/server-config.html
The Dragon product line has NIDS software, and HIDS services that can be loaded on a general use server or a log server (NT and several of the more popular flavors of UNIX) and both the NIDS and HIDS (currently) have a 1500+ signature database. Also, the DragonServer allows for attack correlation and analysis from multiple sources within your enterprise and can be used to push out new signatures to NIDS and HIDS within your enterprise. It's a commercial tool so take that with all the pluses and minuses that come with it.
Regards,
Scott A. Wozny
Enterasys, NYC
-----Original Message-----
From: Riley, Steven (Security) [mailto:[EMAIL PROTECTED]]
Sent: Thursday, November 09, 2000 10:37 AM
To: [EMAIL PROTECTED]
Subject: Log Analysis
Does anyone have a list of log analysis tools, freeware or commercial?
I am particularly interested in tools that can identify security related
issues within the logs such as attempted port scans.
Cheers in Advance,
Steve
--
This communication contains information which is confidential and
may also be privileged. It is for the exclusive use of the
intended recipient(s). If you are not the intended recipient(s),
please note that any distribution, copying or use of this
communication or the information in it is strictly prohibited.
If you have received this communication in error, please notify
the sender immediately and then destroy any copies of it.
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
