focus-ids  

Messages by Date

• 2006/02/21 Tracking back internal incidents to users, not IPs Charles Kaplan
• 2006/02/21 Re: IPS Reliability/Availability Martin Roesch
• 2006/02/21 RE: IPS Reliability/Availability Alan Shimel
• 2006/02/21 RE: Testing IDS with tcpreplay Bhaarath
• 2006/02/19 RE: IPS Reliability/Availability Andrew Plato
• 2006/02/19 Re: IPS Reliability/Availability David W. Goodrum
• 2006/02/19 Re: Testing IDS with tcpreplay Richard Bejtlich
• 2006/02/19 RE: IPS Reliability/Availability Mike Barkett
• 2006/02/19 Re: IPS Reliability/Availability Martin Roesch
• 2006/02/19 Re: IPS Reliability/Availability Martin Roesch
• 2006/02/19 Re: Testing IDS with tcpreplay Aaron Turner
• 2006/02/19 RE: Testing IDS with tcpreplay Prashant Khandelwal
• 2006/02/15 Re: Testing IDS with tcpreplay Aaron Turner
• 2006/02/15 Re: Testing IDS with tcpreplay Ratna Kumar
• 2006/02/15 Re: Passive Network Taps - on the cheap Packet Man
• 2006/02/14 Re: Testing IDS with tcpreplay ehanselman
• 2006/02/14 Re: Real world experience with HIDS Sebastien Tricaud
• 2006/02/13 Testing IDS with tcpreplay Elias-Bachrach, Ari (HQ-WRH10)
• 2006/02/13 Re: Passive Network Taps - on the cheap Richard Bejtlich
• 2006/02/13 Re: IPS Reliability/Availability Bob Walder
• 2006/02/13 Passive Network Taps - on the cheap Packet Man
• 2006/02/13 IPv6 capable Security Scanner David W. Goodrum
• 2006/02/13 Re: IPS Reliability/Availability David Williams
• 2006/02/13 Re: Real world experience with HIDS Daniel Cid
• 2006/02/13 Version 0.6 of the OSSEC HIDS is available for download. Daniel Cid
• 2006/02/13 RE: Writing signatures for e-mail virus attachments Matthew Conover
• 2006/02/13 IPS Bad Experiences - mini survey Mike Smith
• 2006/02/07 RE: IPS Reliability/Availability Kunz, Jeffrey T.
• 2006/02/07 Re: IPS Reliability/Availability David W. Goodrum
• 2006/02/07 RE: Real world experience with HIDS Charles Heselton
• 2006/02/07 Re: Writing signatures for e-mail virus attachments lucien Fransman
• 2006/02/07 RE: Type of Attack Vector avi chesla
• 2006/02/07 Re: anomaly IDS ideas ? Stefano Zanero
• 2006/02/07 Real world experience with Dlink Hotspot Max Kreimerman
• 2006/02/07 RE: Real world experience with HIDS Sekurity Wizard
• 2006/02/07 Re: Writing signatures for e-mail virus attachments anonymous
• 2006/02/07 Re: Network World IPS Review Invitation - calling all IPS vendors! Joel M Snyder
• 2006/02/07 RE: Network World IPS Review Invitation - calling all IPS vendors! Andrew Plato
• 2006/02/07 RE: IPS Reliability/Availability Andrew Plato
• 2006/02/07 Re: anomaly IDS ideas ? Christian G. Charette
• 2006/02/07 Re: IPS Reliability/Availability FinAckSyn
• 2006/02/07 Re: Writing signatures for e-mail virus attachments David W. Goodrum
• 2006/02/07 RE: Real world experience with HIDS Gregg Earnhart
• 2006/02/07 Re: Real world experience with HIDS lucien Fransman
• 2006/02/06 RE: IPS Reliability/Availability Wes Young
• 2006/02/06 Writing signatures for e-mail virus attachments c_sek_har
• 2006/02/06 RE: IPS Reliability/Availability CraigPaterson
• 2006/02/06 Re: Real world experience with HIDS Paul Schmehl
• 2006/02/06 Re: anomaly IDS ideas ? Simon Biles
• 2006/02/06 Re: Real world experience with HIDS FinAckSyn
• 2006/02/02 RE: IPS Reliability/Availability Chris Serafin
• 2006/02/02 Network World IPS Review Invitation - calling all IPS vendors! Joel M Snyder
• 2006/02/02 RE: Real world experience with HIDS Palmer, Paul (ISSAtlanta)
• 2006/02/02 RE: Type of Attack Vector Johann van Duyn
• 2006/02/02 IPS Reliability/Availability geek_brigades
• 2006/02/02 Re: Real world experience with HIDS Pukhraj Singh
• 2006/02/02 anomaly IDS ideas ? the_aok
• 2006/01/31 Real world experience with HIDS Paul Schmehl
• 2006/01/27 Re: snort & regular expressions Martin Roesch
• 2006/01/27 Re: snort & regular expressions Sevil SEN
• 2006/01/26 Re: Sources for IP geolocation data NetSecGuy
• 2006/01/26 PaulDotCom Security Weekly - Interview with Richard Bejtlich Paul Asadoorian
• 2006/01/26 RE: Sources for IP geolocation data Colby DeRodeff
• 2006/01/26 Re: snort & regular expressions Martin Roesch
• 2006/01/25 Type of Attack Vector jono29
• 2006/01/25 Re: Sources for IP geolocation data Jose Nazario
• 2006/01/25 Re: Sources for IP geolocation data Adam Powers
• 2006/01/25 snort & regular expressions Sevil SEN
• 2006/01/25 Re: Sources for IP geolocation data Patrick Walsh
• 2006/01/25 Sources for IP geolocation data NetSecGuy
• 2006/01/25 ANN: New release of CORE FORCE free endpoint security package Core FORCE team
• 2006/01/24 RE: Signatures taking down network Mike Barkett
• 2006/01/21 RE: Signatures taking down network Gary Halleen (ghalleen)
• 2006/01/21 Evasion Techniques still in use? leonardo
• 2006/01/21 Re: Signatures taking down network Sam Evans
• 2006/01/20 RE: HIDS/HIPS Selection Process Spyro Malaspinas
• 2006/01/19 RE: Signatures taking down network Ghetti, Tim
• 2006/01/18 RE: Signatures taking down network Palmer, Paul (ISSAtlanta)
• 2006/01/18 Re: Signatures taking down network Sam Evans
• 2006/01/18 RE: Signatures taking down network Palmer, Paul (ISSAtlanta)
• 2006/01/17 Re: HIDS/HIPS Selection Process Drew Simonis
• 2006/01/17 Re: Signatures taking down network Dhruv Soi
• 2006/01/16 RE: Signatures taking down network Craddock, Larry
• 2006/01/16 Re: Signatures taking down network Paul Schmehl
• 2006/01/16 RE: Tuning false positives (SIM and VM) Jasun Tate
• 2006/01/16 Re: Specification-based Anomaly Detection Stefano Zanero
• 2006/01/16 Re: Signatures taking down network Ramon Kagan
• 2006/01/16 Re: Testing IDS/IPS Solutions Nomellames nunca
• 2006/01/16 Announcement: The Web Application Firewall Evaluation Criteria v1 Released contact
• 2006/01/16 Signatures taking down network David Williams
• 2006/01/16 RE: Tuning false positives - SIM is not the answer Ron Gula
• 2006/01/15 Re: Testing IDS/IPS Solutions Aaron Turner
• 2006/01/15 RE: Tuning false positives - SIM is not the answer Bruce Young
• 2006/01/14 Re: RE: Tuning false positives - SIM is not the answer Anton Chuvakin
• 2006/01/13 BASE 1.2.2 (cindy) released Kevin Johnson
• 2006/01/13 RE: Tuning false positives - SIM is not the answer Mike Owen
• 2006/01/13 Re: Tuning false positives (SIM and VM) David W. Goodrum
• 2006/01/13 Re: Seeking feedback on new IDS/IPS/SEM Stefano Zanero
• 2006/01/13 RE: Tuning false positives - SIM is not the answer Matthew Caldwell
• 2006/01/12 Re: Tuning false positives - SIM is not the answer Brent Stackhouse
• 2006/01/11 Re: Denial of Service: Commercial Defense products Securesolutions
• 2006/01/11 Re: Tuning false positives - SIM is not the answer Jason
• 2006/01/11 RE: Tuning false positives - SIM is not the answer Hellman, Matthew
• 2006/01/11 RE: WMF and IPS products? Alan Shimel
• 2006/01/11 Re: Tuning false positives - SIM is not the answer Brent Stackhouse
• 2006/01/11 Re: Tuning false positives - SIM is not the answer Jason
• 2006/01/11 Re: WMF and IPS products? Pukhraj Singh
• 2006/01/11 RE: WMF and IPS products? Mills, Alvin R
• 2006/01/11 RE: HIDS/HIPS Selection Process Andrew Plato
• 2006/01/11 Re: Tuning false positives (SIM and VM) Ron Gula
• 2006/01/11 Re: TCP ACK/RST packets with data in the Reset Cause Mike Frantzen
• 2006/01/11 RE: WMF and IPS products? Mike Barkett
• 2006/01/11 RE: TCP ACK/RST packets with data in the Reset Cause Palmer, Paul (ISSAtlanta)
• 2006/01/11 RE: WMF and IPS products? Palmer, Paul (ISSAtlanta)
• 2006/01/11 RE: WMF and IPS products? Murat Korkmaz
• 2006/01/11 Re: WMF and IPS products? Jason Haar
• 2006/01/11 Re: Tuning false positives Raffael Marty
• 2006/01/10 Re: Tuning false positives - SIM is not the answer Brent Stackhouse
• 2006/01/10 TCP ACK/RST packets with data in the Reset Cause Mike Gibson
• 2006/01/10 Re: WMF and IPS products? David W. Goodrum
• 2006/01/10 HIDS/HIPS Selection Process astalavista . box . sk
• 2006/01/10 Re: Testing IDS/IPS Solutions Andres Riancho
• 2006/01/10 RE: Testing IDS/IPS Solutions Tony Haywood
• 2006/01/10 IPS project - wanted translators JEMF
• 2006/01/10 Re: study on subverting IDSs jipi dini
• 2006/01/09 Re: WMF and IPS products? Haseeb Abdali
• 2006/01/09 Re: Tuning false positives mhellman
• 2006/01/06 Testing IDS/IPS Solutions Jimmy Stewpot
• 2006/01/06 RE: Fortinet's fortigate 100 devices Jonathan Lebowitsch
• 2006/01/05 Re: RE: RE: Tuning false positives - SIM is not the answer brent
• 2006/01/05 Re: challenges in capturing Gigabit ethernet Richard Bejtlich
• 2006/01/05 Re: RE: RE: Tuning false positives - SIM is not the answer brent
• 2006/01/05 Re: Denial of Service: Commercial Defense products avi chesla
• 2006/01/05 study on subverting IDSs Nomellames nunca
• 2006/01/05 Re: RE: RE: Tuning false positives - SIM is not the answer rassel_k
• 2006/01/05 RE: Tuning false positives Gary Halleen (ghalleen)
• 2006/01/05 Re: challenges in capturing Gigabit ethernet Stefano Zanero
• 2006/01/05 Re: Denial of Service: Commercial Defense products Stefano Zanero
• 2006/01/05 Re: Tuning false positives - SIM is not the answer Stefano Zanero
• 2006/01/05 WMF and IPS products? Sam Evans
• 2006/01/05 RE: Tuning false positives mhellman
• 2006/01/05 Re: Tuning false positives Devdas Bhagat
• 2006/01/05 Re: Fortinet's fortigate 100 devices Bob Walder
• 2006/01/05 RE: Tuning false positives Ofer Shezaf
• 2006/01/02 RE: RE: Tuning false positives - SIM is not the answer Andrew Plato
• 2006/01/02 RE: Fortinet's fortigate 100 devices Andrew Plato
• 2006/01/02 Re: challenges in capturing Gigabit ethernet Securesolutions
• 2006/01/02 Re: Denial of Service: Commercial Defense products Securesolutions
• 2006/01/02 Re: Denial of Service: Commercial Defense products avi chesla
• 2006/01/02 Re: Fortinet's fortigate 100 devices hank . schupp
• 2006/01/02 Re: Fortinet's fortigate 100 devices Joel M Snyder
• 2006/01/02 Re: Tuning false positives Joel M Snyder
• 2006/01/02 Re: challenges in capturing Gigabit ethernet Michael J. Semaniuk
• 2006/01/02 Re: Fortinet's fortigate 100 devices Louis Wang
• 2006/01/02 RE: RE: Tuning false positives - SIM is not the answer Gary Halleen (ghalleen)
• 2005/12/28 Re: RE: Tuning false positives - SIM is not the answer rassel_k
• 2005/12/28 RE: Tuning false positives (Nessus in CS-MARS) [email protected]
• 2005/12/28 RE: Denial of Service: Commercial Defense products Kyle Quest
• 2005/12/28 Re: challenges in capturing Gigabit ethernet Mike
• 2005/12/28 Re: on TASL correlation rules Augusto Paes de Barros
• 2005/12/28 Fortinet's fortigate 100 devices Jimmy Stewpot
• 2005/12/28 RE: Denial of Service: Commercial Defense products Barrett G. Lyon
• 2005/12/28 Re: on TASL correlation rules [email protected]
• 2005/12/28 Re: Tuning false positives David W. Goodrum
• 2005/12/28 RE: Tuning false positives Gary Halleen (ghalleen)
• 2005/12/28 RE: Tuning false positives Balázs Imre
• 2005/12/28 RE: Tuning false positives Hazel, Scott A.
• 2005/12/28 Re: on TASL correlation rules Anton Chuvakin
• 2005/12/27 Re: challenges in capturing Gigabit ethernet Rodrigo Barbosa
• 2005/12/27 RE: Tuning false positives Gary Halleen (ghalleen)
• 2005/12/27 Re: Tuning false positives Pukhraj Singh
• 2005/12/27 RE: Tuning false positives Omar Herrera
• 2005/12/27 Re: Tuning false positives ismail syed
• 2005/12/27 Re: challenges in capturing Gigabit ethernet Sanjay Rawat
• 2005/12/27 Re: challenges in capturing Gigabit ethernet hank . schupp
• 2005/12/27 Tuning false positives Sam Heshbon
• 2005/12/27 challenges in capturing Gigabit ethernet Siddharth Phadnis
• 2005/12/21 RE: Remote IDS Testing - Config question Hank . Schupp
• 2005/12/21 Re: Denial of Service: Commercial Defense products snort user
• 2005/12/21 Re: Denial of Service: Commercial Defense products avi chesla
• 2005/12/21 Re: Replacing antivirus soft with a real IDS/IPS Pete Herzog
• 2005/12/21 Re: Tools to Visualize Security Data espen
• 2005/12/21 Re: Replacing antivirus soft with a real IDS/IPS carlopmart
• 2005/12/21 Re: Re: Remote IDS Testing manuscity
• 2005/12/18 Re: Remote IDS Testing ADT
• 2005/12/18 Re: Replacing antivirus soft with a real IDS/IPS InfoSecBOFH
• 2005/12/16 Re: Replacing antivirus soft with a real IDS/IPS Jason Thompson
• 2005/12/16 Re: Denial of Service: Commercial Defense products FinAckSyn
• 2005/12/16 Re: tired of "what is the best IDS/IPS system?" questions Byron Sonne
• 2005/12/16 RE: Remote IDS Testing Schupp, Hank
• 2005/12/16 Re: tired of "what is the best IDS/IPS system?" questions Miguel Valentin
• 2005/12/16 Re: Replacing antivirus soft with a real IDS/IPS FinAckSyn
• 2005/12/15 Re: tired of "what is the best IDS/IPS system?" questions Byron Sonne
• 2005/12/15 Re: Replacing antivirus soft with a real IDS/IPS Jeffrey . Stebelton
• 2005/12/12 Re: Tools to Visualize Security Data Byron Sonne
• 2005/12/12 Re: Denial of Service: Commercial Defense products avi chesla
• 2005/12/12 Re: Replacing antivirus soft with a real IDS/IPS Albert Gonzalez
• 2005/12/12 Re: Human-oriented IDS, new Paper+Tool Steffen Wendzel
• 2005/12/12 Re: Replacing antivirus soft with a real IDS/IPS Packet Man
• 2005/12/12 tired of "what is the best IDS/IPS system?" questions Tom Van de Wiele

• Earlier messages
• Later messages