Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-IDS
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Ossim

from [Craig Rodenberg] Network Security [Permanent Link]
Subject: Re: Ossim
Date: Mon, 26 Sep 2005 12:21:22 -0500 
Great tip, Frank!
Good stuff. Using snortsam, it should be pretty easy to get OSSIM todisplay the 
current status of applied ACL's (active / removed) torouters and firewalls.
Thanks again!
--Craig Rodenberg, GIACDirector, Information SecurityRed Plaid Hosting
On 9/22/05, Frank Knobbe <frank@knobbe.us> wrote:> On Wed, 2005-09-21 at 13:49 
-0500, Craig Rodenberg wrote:> > The Cisco ACL creation and PIX firewall rule 
insertion features are> > what I spent the most time on. The basic 
functionality for attack> > blocking is already there, but you'll want to make 
sure that a DDoS> > attack (or other spoofed attack) does not cause you to ACL 
/ firewall> > your network against the entire internet.>> > OSSIM and AAnval 
seem to be the best "free" NETSEC tools right now.>> You might want to check 
out SnortSAM at http://www.snortsam.net.>> Cheers,> Frank>>>> -----BEGIN PGP 
SIGNATURE-----> Version: GnuPG v1.4.2 (FreeBSD)>> 
iD8DBQBDM1i6wBQKb2zelzoRAkSYAKCgHAnWMZOYTq5KUf0R+JFdWVvHWgCfaAtn> 
MucRow1DcnL9mfBsV8VLhiw=> =Oeww> -----END PGP SIGNATURE----->>>
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Ability for SIM to perform tcp stream reassembly, Ron Gula
Next by Date:  RE: Ossim, Hoover, James A (THIP, Corp)
Previous by Thread:  Re: Ossim, Craig Rodenberg
Next by Thread:  Re: Ossim, Adolfo .
Indexes:  [Date] [Thread] [Top] [All Lists]