[Snort-users] IDScenter 1.09 beta 2 released -- New features like Snort configuration wizard, MySQL alert detection, etc..

Kistler Ueli iuk at ...1171...
Tue Jul 9 07:34:08 EDT 2002


You can activate the MySQL alert detection of IDScenter on the Windows
box. Viewing the log files can be done using ACID for example.
The ACID site can directly be viewed in IDScenter's explorer window, if
an alert occurs.
You need to run a Snort process on this computer though.

Regards,
  Eclipse
  eclipse at ...5277...

--

Vadim Pushkin wrote:

> This seems to run your sensor on windoze. Can one use the
> windoze GUI against say either a Linux or OpenBSD sensor
> that captures to MySQL, of course on either Linux or Open
> BSD as well?
>
> Thank you,
>
> Vadim
>
>
>> From: Kistler Ueli <iuk at ...1171...>
>> To: Snort Users <snort-users at lists.sourceforge.net>
>> Subject: [Snort-users] IDScenter 1.09 beta 2 released -- New features
>> like Snort configuration wizard, MySQL alert detection, etc..
>> Date: Thu, 20 Jun 2002 23:15:29 +0200
>>
>> -----BEGIN PGP SIGNED MESSAGE-----
>> Hash: SHA1
>>
>> Hello
>>
>> .. just released IDScenter 1.09 beta 2! Check it out ;-)
>> I moved the site to www.packx.net. IDScenter can soon also be
>> downloaded from several security sites.
>>
>> here's a description if you don't know idscenter already.. :
>>
>> Snort IDScenter is a GUI for Snort IDS on Windows platforms.
>> Configuration and management of the IDS can be done using IDScenter.
>>
>> Main features are: Snort configuration wizard (variables,
>> preprocessor
>> plugins, output plugins, rulesets), alert notification via e-mail,
>> sound
>> or only visual notification, alert file monitoring (up to 10 files),
>> MySQL alert detection, Log rotation (compressed archiving of log
>> files),
>> AutoBlock (using NetworkICE BlackICE Defender you can block attackers
>> IP's that Snort logged), integrated log viewer (supports text files,
>> XML
>> and HTML/webpages), program execution if an attack was detected, test
>> configuration feature, etc.
>> There's also an XML data server available (free) on www.packx.net.
>>
>> Regards,
>>   Ueli Kistler (eclipse at ...5277... / iuk at ...1171...)
>>   PackX Team
>>   www.packx.net
>>
>> - --
>>
>> -----BEGIN PGP SIGNATURE-----
>> Version: PGP 7.0.4
>>
>> iQA/AwUBPRJFzGnfm6NyZfRJEQLJbgCffwDQAwd3w3/LIqyCthgMF201KeoAoMol
>> qC1ezBCOilzsgAvwN+MjDR6x
>> =IZE1
>> -----END PGP SIGNATURE-----
>>
>> Key-ID: 0x7265F449
>>
>>
>>
>> -------------------------------------------------------
>> Sponsored by:
>> ThinkGeek at http://www.ThinkGeek.com/
>> _______________________________________________
>> Snort-users mailing list
>> Snort-users at lists.sourceforge.net
>> Go to this URL to change user options or unsubscribe:
>> https://lists.sourceforge.net/lists/listinfo/snort-users
>> Snort-users list archive:
>> http://www.geocrawler.com/redir-sf.php3?list=snort-users
>
>
>
>
>
> -vadim
> Vadim (Ukranian Stallion) Pushkin
>
>
> _________________________________________________________________
> Chat with friends online, try MSN Messenger: http://messenger.msn.com
>
>
>
> -------------------------------------------------------
> This sf.net email is sponsored by:ThinkGeek
> Stuff, things, and much much more.
> http://thinkgeek.com/sf
> _______________________________________________
> Snort-users mailing list
> Snort-users at lists.sourceforge.net
> Go to this URL to change user options or unsubscribe:
> https://lists.sourceforge.net/lists/listinfo/snort-users
> Snort-users list archive:
> http://www.geocrawler.com/redir-sf.php3?list=snort-users
>
>







More information about the Snort-users mailing list