pH! Automated Response Using System-Call Delays

From: Pathmenanthan Ramakrishna (nanthan@siswa.utm.my)
Date: 03/25/03

Previous message: Dejan Markovic: "Re: about mirroring port"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: 25 Mar 2003 09:06:52 -0000
From: Pathmenanthan Ramakrishna <nanthan@siswa.utm.my>
To: focus-ids@securityfocus.com

('binary' encoding is not supported, stored as-is)

hi everyone,

Has anyone tried using pH distribution,its an kernel based responce
method for AIS.it uses system call behaviour.

i need some info here,where im comparing the system call data of an
anamalous intrusion with the SNORT ids rules sets.

thanks

Nanthan.R

-----------------------------------------------------------
ALERT: Exploiting Web Applications- A Step-by-Step Attack Analysis
Learn why 70% of today's successful hacks involve Web Application
attacks such as: SQL Injection, XSS, Cookie Manipulation and Parameter
Manipulation.
http://www.spidynamics.com/mktg/webappsecurity71

Next message: JC: "commercial IPS"

Previous message: Dejan Markovic: "Re: about mirroring port"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

RE: how to test IDS performance?
... how to test IDS performance? ... Exploiting Web Applications- A Step-by-Step Attack Analysis Learn ...
(Focus-IDS)
Re: misuse detector
... Remember that training set should be at ... train such a big network without hopelessly overfitting it. ... Exploiting Web Applications- A Step-by-Step Attack Analysis ...
(Focus-IDS)
how to test IDS performance?
... test for the IDS performance? ... Do you Yahoo!? ... Exploiting Web Applications- A Step-by-Step Attack Analysis ...
(Focus-IDS)
Re: Honeytokens and detection
... See the work done on Canary Traps -- and that done on ... collaborative and non-collaborative cheating. ... Exploiting Web Applications- A Step-by-Step Attack Analysis ...
(Focus-IDS)