Well, if you like the idea BackTrack and nodZero for all in one hacking, you will love AlienVault for all in one monitoring. With a single interface, you get OSSEC, Nagios, your choice of Snort or Suricata, prads, scheduled nmap scans, your choice of Nessus or OpenVas, plus Munin and much more. Correlation engine permits directives based notifications that are cognizant of each of the tools rules and thresholds. AWS compatible AMI to boot if that is your venue.
www.alienvault.com
RK
AlienVault / OSSIM
- Ramius
- The Evil Clown
- Posts:1714
- Joined:Fri Mar 26, 2004 8:47 pm
- Contact:
- Cool_Fire
- Not a sandwich
- Posts:1913
- Joined:Fri May 09, 2003 1:20 pm
- Location:41 6d 73 74 65 72 64 61 6d
- Contact:
Re: AlienVault / OSSIM
Sadly it's prohibitively expensive for most people, especially for private use.
If we're breaking the rules, then how come you can't catch us? You can't find us? I know why. Cause, it's ... MAGIC!
Hackerthreads chat, where the party is going 24/7.
Hackerthreads chat, where the party is going 24/7.
- Ramius
- The Evil Clown
- Posts:1714
- Joined:Fri Mar 26, 2004 8:47 pm
- Contact:
Re: AlienVault / OSSIM
Well, actually, there are two flavors OSSIM is the freeware version and AlienVault (USM) is the paid version. OSSIM has nearly all of the features that AlienVault has, with the exception of the uber r33t correlation engine. All of the base tools integration are native and work very well.
Anyway... (don't be such a pessimist).
It's so good to be back..
RK
Anyway... (don't be such a pessimist).
It's so good to be back..
RK
- Cool_Fire
- Not a sandwich
- Posts:1913
- Joined:Fri May 09, 2003 1:20 pm
- Location:41 6d 73 74 65 72 64 61 6d
- Contact:
Re: AlienVault / OSSIM
It has been about a billion years since I last saw you on here yes. How are things going?
If we're breaking the rules, then how come you can't catch us? You can't find us? I know why. Cause, it's ... MAGIC!
Hackerthreads chat, where the party is going 24/7.
Hackerthreads chat, where the party is going 24/7.