ntop on Ubuntu
The ubuntu community has published a post that explains how to compile/use ntop on Ubuntu. This is the URL of the post. …
Using Genetic Algorithms for Network Intrusion Detection and Integration into nProbe
Conference: OSCON 2010 Presentation Link: Ignite Track Presented by: Brian Lavender SNORT is popular Network Intrusion Detection System (NIDS) tool that currently uses a custom rule based system to identify attacks. This presentation emphasizes on writing the algorithm to write generate the rules through GA and the integration of them into nProbe, a similar network monitoring tool written by Luca Deri with a plug-in architecture. Genetic Algorithms are dependent upon identifying attributes to describe a problem and evolving a desired population. In this case, the problem is an attack through the …
Released ntop 4.0
After a few years of work, this is to announce the availability of ntop 4.0. Major changes include: Partially rewritten ntop processing engine to address reliability and performance Several bugs and stability issues fixed Added better support for IPFIX and NetFlow v9, as well as ntop PEN (Private Enterprise Number) Added support for Cisco ASA firewalls Added ntop engine scriptability via the python programming language Added RRDalarm plugin for generating alerts based on thresholds Improved google maps integration Enhanced sFlow support ntop is available for both Unix and Windows platforms. …
Creating 3D Maps using ntop
Since some time ntop support geolocation. Now courtesy of Ronald W. Henderson it can also display mercator maps and natively integrate with tools such as Google Earth. These ntop extensions are part of the NST (Network Security Toolkit) toolkit. For more information please visit the NST Wiki page. …