Snort Intrusion Detection System (IDS) Logfile Visualisation

Duration

June 2006 – Mar 2008

Internal Participants

Craig Valli, Andrew Woodward, Trish Williams, Chris Bolan

External Participants

British Telecom (5000 UK Pounds)

This project involves the near real-time to real-time visualisation for Snort IDS logfile data. This will involve the use of Paraview modelling software running in real-time on the CRITS beowulf compute cluster to process outputs from a live IDS system. The intention of the project is to provide a mechanism to interpret and monitor threat from network intruders by visualising intrusion alerts or outputs from the IDS. One of the main problems with conventional IDS in large network pipes is the ability to process the IDS data into a meaningful, accurate and timely framework to enable timely, informed response to inbound or outbound threats on a network infrastructure.

Events

March 2010
MonTueWedThuFriSatSun
  
1 2 3 4 5 6 7
8 9 10 11 12 13 14
15 16 17 18 19 20 21
22 23 24 25 26 27 28
29 30 31  

Latest News

Open Source Intelligence: Tradecraft & Tools – 12 March

February 25th, 2010

There has never been anything in the history of humankind that comes close to the ability of the Internet to reach to almost every part of the globe.  But, as with all new technologies, it comes at a cost—many costs, in fact.
The first Google index in 1998 captured 26 million pages, and by 2000 the [...]

secAU Special Interest Group Seminar: VoIP something old something new

February 5th, 2010

Over 30 years ago the “holy grail of hackers was the compromise and utilisation of PABX systems to enable free phone calls for voice and of course data at that stage. In response to this phenomenon PABX systems became increasingly secure and less able to be compromised. Now some 30 years on we now have [...]