What happened to anomaly detection/packet dynamics? Are there clients?
Matt Brown
matthewbrown at gmail.com
Wed May 30 20:12:02 EDT 2012
Hello all,
After some research, it's quite obvious that argus output can be used as
input for anomaly detection.
Carter was involved in a presentation at flocon 2012 that mentions a few
cases of analysis:
http://www.cert.org/flocon/2012/presentations/bullard-gerth-implementing-packet-dynamic-awareness-argus.pdf
I also see that argus is mentioned in another presentation at cmu:
http://www.andrew.cmu.edu/user/gnychis/imcfp04-nychis-slides.pdf
What ever happened to this? Are there any plans to write a client that can
perform some simple anomaly or other analysis?
Thanks,
Matt
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://pairlist1.pair.net/pipermail/argus/attachments/20120530/8a35c93b/attachment.html>
More information about the argus
mailing list