Project

General

Profile

Bug #383

Correlation of multiple different security events

Added by axl axl almost 14 years ago. Updated over 9 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Target version:
-
Start date:
06/22/2010
Due date:
% Done:

0%

Resolution:
invalid

Description

Hello! I need help in writing a plugin for prelude-correlator which will correlate 2 or 3 alerts. For example I want prelude-correlator to generate a correlation-alert if 3 ICMP Packet matched alerts are detected and then a remote login is attempted against the same destination IP. Thank you very much!

History

#1 Updated by Francois POIROTTE about 12 years ago

  • Tracker changed from Support to Bug

Est-ce qu'on veut traiter ce genre de demandes ? J'aurais tendance

#2 Updated by Thomas GIRARD about 12 years ago

Je confirme : on est en best effort, pas de maintenance

#3 Updated by Antoine LUONG over 9 years ago

  • Status changed from New to Closed
  • Resolution set to invalid

Also available in: Atom PDF