Bug #383
Correlation of multiple different security events
Status:
Closed
Priority:
Normal
Assignee:
-
Target version:
-
Start date:
06/22/2010
Due date:
% Done:
0%
Resolution:
invalid
Description
Hello! I need help in writing a plugin for prelude-correlator which will correlate 2 or 3 alerts. For example I want prelude-correlator to generate a correlation-alert if 3 ICMP Packet matched alerts are detected and then a remote login is attempted against the same destination IP. Thank you very much!
History
#1 Updated by Francois POIROTTE about 12 years ago
- Tracker changed from Support to Bug
Est-ce qu'on veut traiter ce genre de demandes ? J'aurais tendance
#2 Updated by Thomas GIRARD about 12 years ago
Je confirme : on est en best effort, pas de maintenance
#3 Updated by Antoine LUONG over 9 years ago
- Status changed from New to Closed
- Resolution set to invalid