[afnog] MONITORING WIRELESS APs AND USERS
Ali Abdullahi
ali.abdullahi at nils.gov.ng
Mon Oct 7 07:56:48 UTC 2013
Do you know about Security Onion
(http://code.google.com/p/security-onion/wiki/Installation)? It's a
really good NIDS based on Bro and Snort (or, optionally, Suricata). I'm
using this to monitor my networks for abuse and malware with really good
results. By default it does full content captures (for later in-depth
analysis if warranted) and automatically purges older captures on a
rolling basis as the disk fills up.
Yeah I just checked it out...I will deploy it and see what it gives us. Thanks
Cheer
More information about the afnog
mailing list