[Snort-users] Anomaly detection and Snort

Nikns Siankin nikns at ...13802...
Fri Apr 13 11:24:51 EDT 2007


No one needs your closed source ids product.

On Fri, Apr 13, 2007 at 11:07:29AM -0400, Mike DeGraw-Bertsch wrote:
>Howdy,
>
>At this time, we're thinking of a binary release.  I have been
>discussing the open source option with our management, however.
>
>  -Mike 
>
>-----Original Message-----
>From: David J. Bianco [mailto:david at ...13799...] 
>Sent: Thursday, April 12, 2007 4:37 PM
>To: Mike DeGraw-Bertsch; snort-users at lists.sourceforge.net
>Subject: Re: [Snort-users] Anomaly detection and Snort
>
>Mike DeGraw-Bertsch wrote:
>> Howdy,
>> 
>> My company, CounterStorm, has developed packet content level anomaly 
>> detection for the security space.  The technology builds statistical 
>> models of the contents of network traffic, and looks for anomalies 
>> within this.  It's distinctly different from most AD technology in 
>> that it's actually working on layer 7, not just looking at traffic
>volumes.
>> We're considering making this available as a Snort module.
>>
>
>Sounds pretty neat.  Is this something you're considering releasing as
>open source, or a binary-only distribution?
>
>	David
>
>
>-------------------------------------------------------------------------
>Take Surveys. Earn Cash. Influence the Future of IT
>Join SourceForge.net's Techsay panel and you'll get the chance to share your
>opinions on IT & business topics through brief surveys-and earn cash
>http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
>_______________________________________________
>Snort-users mailing list
>Snort-users at lists.sourceforge.net
>Go to this URL to change user options or unsubscribe:
>https://lists.sourceforge.net/lists/listinfo/snort-users
>Snort-users list archive:
>http://www.geocrawler.com/redir-sf.php3?list=snort-users




More information about the Snort-users mailing list