[Snort-users] Sagan 0.1.0 released [Snort like log analysis engine]

CunningPike cunningpike at ...11827...
Wed Jun 30 17:56:48 EDT 2010


On Fri, Jun 25, 2010 at 9:08 AM, Champ Clark III [Softwink]
<champ at ...14910...> wrote:
>
>        Hello,
>
>        I've released a tool that will take log information (syslog,
> snmptrapd, etc) and store to a Snort database.   This basically allows
> you to store security relevant log data and store it to your Snort
> databases.   Sagan will also attempt to corralate events with your
> IDS/IPS.  Here's the generic run down of the applications.
>
> --<snip>---
>

Sounds like it's begging for a sguil agent to be written for it....

CP




More information about the Snort-users mailing list