After succesfully installing Suricata and Snorby, I’m going to use Barnyard2 to read the alerts and send them to Snorby’s database. Barnyard2 understands the unified2 binary format. If you get lost, don’t be worry because I’m going to update the Snorby how-to. If you can’t wait, I’ve followed these steps: Download Barnyard2 wget http://www.securixlive.com/download/barnyard2/barnyard2-1.9.tar.gz tar [...]
Archive for November, 2011
Using Barnyard2 with Snorby
Posted in IDS/IPS on 11/19/2011 | 1 Comment »
Installing Snorby on Debian Squeeze
Posted in IDS/IPS on 11/01/2011 | Leave a Comment »
According to snorby.org, Snorby is a ruby on rails web application for network security monitoring that interfaces with current popular intrusion detection systems (Snort, Suricata and Sagan). The project goal is to create a free, open source and highly competitive application for network monitoring for both private and enterprise use. Today I’m going to show [...]
