host-based ids evaluation
From: gianluca valecchi (glvalecchi@hotmail.com)Date: 08/09/02
- Previous message: Mark Shirley: "Re: IPSec and IDS"
- Next in thread: Konrad Rieck: "Re: host-based ids evaluation"
- Reply: Konrad Rieck: "Re: host-based ids evaluation"
- Reply: Ali Saifullah Khan: "Re: host-based ids evaluation"
- Reply: Gian Luca Valecchi: "Re: host-based ids evaluation"
- Reply: Andrew Plato: "Re: host-based ids evaluation"
- Reply: Kohlenberg, Toby: "RE: host-based ids evaluation"
- Reply: Kohlenberg, Toby: "RE: host-based ids evaluation"
- Reply: raffael.marty@ch.pwcglobal.com: "Re: host-based ids evaluation"
- Reply: Rob Shein: "RE: host-based ids evaluation"
- Reply: Detmar Liesen: "Re: host-based ids evaluation"
- Reply: Kohlenberg, Toby: "RE: host-based ids evaluation"
- Reply: Talisker: "Re: host-based ids evaluation"
- Reply: Kohlenberg, Toby: "RE: host-based ids evaluation"
- Reply: Andrew Plato: "RE: host-based ids evaluation"
- Reply: Detmar Liesen: "RE: host-based ids evaluation"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "gianluca valecchi" <glvalecchi@hotmail.com> To: focus-ids@securityfocus.com Date: Fri, 09 Aug 2002 14:02:07 +0200
HI all,
I'm an IDS newbie, I've to evaluate some host-based IDS products.
I need some advice about how to setup a fisible testbed.
I would reproduce some attacks from an attacker machine towards two victim
machines (winnt and solaris) on which I've to install ids sensors:
I need some pointers to find some attack/evaluation tools to exec towards
the victim machine inside my testbed.
I also know something about IDSwakeup/snot/stick tools; but AFAIK they're
for network ids evaluation.
Is there something out there (similar to it) for host-based ids ?
it could be very useful to me if you would point me the right way.
thank you in advance,
Gianluca
_________________________________________________________________
Specisci e ricevi le tue email Hotmail dal tuo cellulare con:
http://mobile.msn.it
- Previous message: Mark Shirley: "Re: IPSec and IDS"
- Next in thread: Konrad Rieck: "Re: host-based ids evaluation"
- Reply: Konrad Rieck: "Re: host-based ids evaluation"
- Reply: Ali Saifullah Khan: "Re: host-based ids evaluation"
- Reply: Gian Luca Valecchi: "Re: host-based ids evaluation"
- Reply: Andrew Plato: "Re: host-based ids evaluation"
- Reply: Kohlenberg, Toby: "RE: host-based ids evaluation"
- Reply: Kohlenberg, Toby: "RE: host-based ids evaluation"
- Reply: raffael.marty@ch.pwcglobal.com: "Re: host-based ids evaluation"
- Reply: Rob Shein: "RE: host-based ids evaluation"
- Reply: Detmar Liesen: "Re: host-based ids evaluation"
- Reply: Kohlenberg, Toby: "RE: host-based ids evaluation"
- Reply: Talisker: "Re: host-based ids evaluation"
- Reply: Kohlenberg, Toby: "RE: host-based ids evaluation"
- Reply: Andrew Plato: "RE: host-based ids evaluation"
- Reply: Detmar Liesen: "RE: host-based ids evaluation"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
