SRI International's EMERALD (Event Monitoring Enabling Responses to Anomalous Live Disturbances) research project is a distributed scalable tool suite for tracking malicious activity through and across large networks.
Security Incident Fusion Tools (SIFT) is an integrated framework for evaluating the security of an entire computer network on a single screen. The project attempts to address the need to discover undetected security incidents.
A case study/research paper providing detailed analysis of several anomalous network events to illustrate the techniques for examining alerts and logs generated by a network intrusion detection system.
Computers /
Security /
Research
|