Penetration Testing mailing list archives
Re: [PEN-TEST] Audit package
From: H Carvey <keydet89 () YAHOO COM>
Date: Fri, 29 Sep 2000 10:10:07 -0000
Another tool to throw into the equation is KSE
(formerly) CMDS Something that needs to be pointed out here... CMDS started out as an SAIC product...but with no customers to pay for it's development, ODS bought it up. CMDS uses an expert system to perform statistical profiling by user or IP. This allows thresholds for behavior to be set...so that over time, thresholds can be minimized, and only statistically significant events will cause alarms. CMDS is more than just a tool that collects logs and dumps them into a database. Another tool the deserves mention is SilentRunner, from Raytheon. This is an interesting tool and there is really no way to do it justice here...you have to see it for yourself. This tool finds it's origins with the intelligence community. Be careful...it needs some pretty significant hardware to support it's full functionality. Carv
Current thread:
- [PEN-TEST] Audit package Michael Graham (Sep 27)
- Re: [PEN-TEST] Audit package Frank Heyne (Sep 27)
- Re: [PEN-TEST] Audit package Peter Rietveld (Sep 27)
- <Possible follow-ups>
- Re: [PEN-TEST] Audit package H Carvey (Sep 27)
- Re: [PEN-TEST] Audit package Talisker (Sep 28)
- Re: [PEN-TEST] Audit package Hiromi Yanaoka (Sep 29)
- Re: [PEN-TEST] Audit package Talisker (Sep 29)
- Re: [PEN-TEST] Audit package Talisker (Sep 28)
- Re: [PEN-TEST] Audit package Richard Hutchinson (Sep 28)
- Re: [PEN-TEST] Audit package Jensen, Greg (Sep 28)
- Re: [PEN-TEST] Audit package H Carvey (Sep 29)
- Re: [PEN-TEST] Audit package Mark Teicher (Sep 29)
- Re: [PEN-TEST] Audit package Talisker (Sep 30)