Login or Register to Ask a Question and Join Our Community


UNIX and Linux RSS News

Summer of Code Projects Completed

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums News, Links, Events and Announcements UNIX and Linux RSS News Summer of Code Projects Completed
# 1  
Old 09-19-2008
Summer of Code Projects Completed
Qualitative risk assessments are a cornerstone security management tool. This type of assessment process is characterized by estimates of asset values, threats, vulnerabilities, and costs from anticipated exposures. Risk management frameworks are a way for managers to determine where to...

More...
Login or Register to Ask a Question

Previous Thread | Next Thread

2 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Finding return code for completed process ??

I have Process Id for one background process and currently it is running state. I want to see the return code after the above running process is done. for the forground process normally I use "echo $?". But how to get the return code for my background process on UNIX/Linux?? Thanks in... (5 Replies)
Discussion started by: sriraman2
5 Replies

2. AIX

summer Time

Good Morning I want to know how I can Abort tha automaticaly date change from summer to winter time ( At the the last sunday of march the date change) Please it is very urgent (0 Replies)
Discussion started by: mktahar
0 Replies
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

prads2snort

PRADS2SNORT(1)							    networking							    PRADS2SNORT(1)

NAME

       prads2snort - Snort autotuning of Frag3 and Stream5

SYNOPSIS

	  prads2snort -i /var/log/prads-asset.log -o /etc/snort/host_attributes.xml -d linux -v

DESCRIPTION

       PRADS is a Passive Real-time Asset Detection System.

       It  passively  listen to network traffic and gathers information on hosts and services it sees on the network. This information can be used
       to map your network, letting you know what services and hosts are alive/used, or can be used together with your favorite IDS/IPS setup  for
       "event to host/service" correlation.

       Gathering  info about your hosts in real-time, will also let you detect assets that are just connected to the network for a short period of
       time, where a active network scan (nmap etc.) would take long time, and not common to run continually, hence missing the asset.

       The initial goal of implementing PRADS, was to make the host_attribute_table.xml for Snort (automatically).

       PRADS2SNORT is the tool that does this!

OPTIONS

       -i,--infile <file>
	      file to feed prads2snort.pl

       -o,--outfile <file>
	      file to write host_attribute data to (host_attribute.xml)

       -d,--default <os>
	      set Default OS if unknown (linux,bsd,macos,windows)

       -v, --verbose
	      prints out OS, frag, stream and confidence of asset

       -h, --help
	      this help message

       --version
	      show prads2snort.pl version

PROBLEMS

       1. Better mapping of less used apps to their correct snort attributes or drop them.

SEE ALSO

       o PRADS <http://prads.projects.linpro.no/>

       o p0f <http://lcamtuf.coredump.cx/p0f.shtml>

       o PADS <http://passive.sourceforge.net/>

       o Snort <http://snort.org>

       o Sguil <http://sguil.net>

       o Hogger <http://code.google.com/p/hogger/>

BUGS

       Report bugs here:

       o http://github.com/gamelinux/prads/issues

       For general questions:

       o http://projects.linpro.no/mailman/listinfo/prads-devel

       o http://projects.linpro.no/mailman/listinfo/prads-users

AUTHOR

       edwardfjellskaal@gmail.com

COPYRIGHT

       GPL

0.2								    2010-06-21							    PRADS2SNORT(1)