Sagan related links:

https://isc.sans.edu/forums/diary/Sagan+as+a+Log+Normalizer/17039 - "Sagan as a Log Normalizer" (Nov 16th, 2013)

http://infosecmatters.blogspot.com/2013/01/elsa-with-sagan.html - Sagan with the ELSA console (Jan, 2013)

http://blog.gerhards.net/2010/10/sagan-and-rsyslog-guest-posting.html - Champ Clark's guest posting on Rainer's (author of RSyslog) blog about Sagan and log anaylsis.

http://linuxdrops.com/installing-sagan-ids-on-centos-5-or-6-monitor-your-logs - Installing Sagan on CentOS 5/6 (Linux) for log monitoring.

http://sagan.quadrantsec.com/papers/wireless-ids/ - Article written by Champ Clark about using Kismet, Snort and Sagan to build wireless IDS monitoring device.

http://isc.sans.edu/diary.html?storyid=9184 - When Sagan was first release, it was discussed on the ISC (Internet Storm Center)/SANS site.

http://www.linux-magazine.com/w3/issue/129/072-073_kurt.pdf - Linux Pro Magazine article that discusses using Sagan for log monitoring.

http://www.infoworld.com/slideshow/65285/bossie-awards-2012-the-best-open-source-networking-and-security-software-202548#slide17 - Sagan was one of the "top security tools" & won a "Bossie Award" from Infoworld.com.

Edit | Attach | Watch | Print version | History: r2 < r1 | Backlinks | Raw View | Raw edit | More topic actions
Topic revision: r2 - 2013-11-16 - ChampClark
 
This site is powered by the TWiki collaboration platform Powered by PerlCopyright © 2008-2019 by the contributing authors. All material on this collaboration platform is the property of the contributing authors.
Ideas, requests, problems regarding TWiki? Send feedback