There is an open source product called OSSIM (by Alienvault) that monitors network traffic with snort and has correlation logic to map security events generated from snort with alerts generated from OSSEC.
On Fri, Apr 6, 2012 at 10:48 AM, Qasim Ijaz <[email protected]> wrote: > Does OSSEC monitor logs only (not network traffic)? If so, can I make > it monitor logs generated by and IDS like snort?
