Evo jedan vrlo koristan alat za IT administratore - Snorby
Snorby je front end za jedan od najboljih i najstarijih IDS-a "out there". Snorby je live linux cd baziran na ubuntu
Da ne pokušavam pričati previše, radije c/p-am text sa originalne stranice:
Snorby is a new and modern Snort IDS front-end. The basic fundamental concepts behind snorby are simplicity and power. The project goal is to create a free, open source and highly competitive application for network monitoring for both private and enterprise use.
Video:
http://vimeo.com/16597187
Dokumentacija:
https://github.com/mephux/Snorby/wiki/_pages
Za one koji ne znaju što je snort:
http://www.snort.org/
Open source signature-i (Emerging Threats):
http://www.emergingthreats.net/
p.s. Usage:
Pokrenuti u virtualnom mašini. Staviti bridge mode.
otvoriti browser i ići na: https: xxx.xxx.xxx (odabrana adresa):8080