PLABS
softwareguideswar roomaboutgo-home
home >> software

PLABS, Corporate and Group Efforts
Astraeus
Astraeus is intended to provide complete control and analysis for a Snort/Suricata IDS/IPS environment.
BASE
BASE is the Basic Analysis and Security Engine. It is based on the code from the Analysis Console for Intrusion Databases (ACID) project. This application provides a web front-end to query and analyze the alerts coming from a SNORT IDS system.
Note: No longer supported.
OpenVAS OpenVAS is a framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution
nfdump
nfdump is a set of tools to collect and process netflow data. It's fast and has a powerful filter pcap like syntax. It supports netflow versions v1, v5, v7, v9 and IPFIX as well as a limited set of sflow. It includes support for Cisco ASA (NSEL) and Cisco NAT (NEL) devices, which export event logging records as v9 flows. nfdump is fully IPv6 compatible.
Splunk Add-on for Netflow
Splunk Add-on for Netflow
This Technology Add-on (TA) allows you to ingest NetFlow in Splunk using nfpcap/nfdump.
The Splunk App for Enterprise Security helps customers identify and address emerging security threats through the use of continuous monitoring, alerting and analytics. Suitable for a small security team or an enterprise security operations center, the app is the primary data interface for the analytics enabled security operation.


© 2001-2017 Procyon Labs / Randal T. Rioux