Hello, everyone!
I'm studying SEC concepts and usage for event correlation but I'm still
looking for a way to understand the integration of SEC with SNORT. I know how
to install SEC but how can I configure it to make a integration with SNORT and
correlate its events? There's a file called 'snort.sec' at
http://www.bleedingthreats.net/sec/. How can I configure this to work exactly
the way it should be?
I'm sorry but I did not find a way to do it and that's why I need some
help. Really thanks for the support.
Fabiano
---------------------------------
Abra sua conta no Yahoo! Mail, o único sem limite de espaço para armazenamento! -------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2008.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________
Simple-evcorr-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/simple-evcorr-users
