Using Linux Scripts to Monitor Security
This paper will show how to use basic Linux scripting to create a reusable network security monitor that is easy to use and easy to maintain. |
1332 |
Understanding IDS Active Response Mechanisms
Debates still rage in the developer community over which methods of detecting attackers are best, but IDS customers as a whole are satisfied with the current IDS technology. To get an edge on the competition, many of the IDS vendors are adding active |
1598 |
Rule Definition For Anomoly Based Intrusion Detection
This document describes another method for intrusion detection. It is based on a proactive ruleset as opposed to reactive ruleset. |
2633 |
An Overview of LIDS
This article is the first part of a four-part series that will offer an overview of LIDS. This installment will offer an introduction to LIDS, including how it works, booting LIDS, sealing the kernel, and configuring LIDS. |
1754 |
Strategies to Reduce False Positives and False Negatives
This documentation is the second of a two-part series that will offer an overview of network-based intrusion detection and false reports. This installment will offer a brief overview of NIDS devices and will examine how and why false reports take pla |
1399 |
Intrusion-Detection Systems by the Numbers
This documentation will explain the performance-testing methodology used to test IDS (Intrusion Detection Systems). |
2308 |
Securing an Unpatchable Webserver... HogWash!
Hogwash is a Snort-based packet scrubber designed to take out 95% of the stock attacks hackers may throw at a network. Hogwash lives inline like a firewall, but it works differently. Instead of closing ports like a traditional firewall, it drops or m |
1584 |
