./security/prelude-correlator, Intrusion event correlation engine

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: pkgsrc-2021Q2, Version: 0.9.0beta8nb7, Package name: prelude-correlator-0.9.0beta8nb7, Maintainer: pkgsrc-users

Prelude-Correlator serves to correlate, in real time, the multiple
events received by Prelude. Several isolated alerts, generated
from different sensors, can thus trigger a single correlation
alert should the events be related. This correlation alert then
appears within the Prewikka interface and indicates the potential
target information via the set of correlation rules.

Signature creation with Prelude-Correlator is based on the powerful
programming language Lua.


Master sites:

SHA1: 962f3c899ed01b9a0efc1368687d6a914e176c73
RMD160: 9ed8e35357ba1bbe6a09c6cb906df28d4f84e347
Filesize: 175.501 KB

Version history: (Expand)