Comments on: RTIR: Adding Incident Response Capabilities to RT http://blog.securitymonks.com/2008/08/07/rtir-adding-incident-response-capabilities-to-rt/ Information about developments at the Monastery Sun, 29 Aug 2010 14:26:49 -0700 http://wordpress.org/?v=2.9.2 hourly 1 By: System Advancements at the Monastery » Blog Archive » Snort 3: The Next Generation http://blog.securitymonks.com/2008/08/07/rtir-adding-incident-response-capabilities-to-rt/comment-page-1/#comment-12643 System Advancements at the Monastery » Blog Archive » Snort 3: The Next Generation Tue, 21 Oct 2008 02:13:24 +0000 http://blog.securitymonks.com/?p=257#comment-12643 [...] In this post, we will be installing Snort 2.8.3.1, the Snort Security Platform (SnortSP), and the Snort 3 analytical engine. Please see Martin Roesch’s, Leon Ward’s, and Richard Bejtlich’s posts for more in-depth discussion. I am going to discuss a few basic concepts of the Snort 3.0 architecture, go through installation, and discuss some configuration and operation of the software. I plan on following this post with a another concerning the setup and installation of Bro 1.4. I will follow that post with an analysis of results from the two systems. At some point, we will discuss integration of results into RTIR. [...] [...] In this post, we will be installing Snort 2.8.3.1, the Snort Security Platform (SnortSP), and the Snort 3 analytical engine. Please see Martin Roesch’s, Leon Ward’s, and Richard Bejtlich’s posts for more in-depth discussion. I am going to discuss a few basic concepts of the Snort 3.0 architecture, go through installation, and discuss some configuration and operation of the software. I plan on following this post with a another concerning the setup and installation of Bro 1.4. I will follow that post with an analysis of results from the two systems. At some point, we will discuss integration of results into RTIR. [...]

]]> By: Jennifer Goddard http://blog.securitymonks.com/2008/08/07/rtir-adding-incident-response-capabilities-to-rt/comment-page-1/#comment-10011 Jennifer Goddard Fri, 08 Aug 2008 14:02:43 +0000 http://blog.securitymonks.com/?p=257#comment-10011 Thanks for the post and for including the Mind Map - very interesting content. I followed the link to ask him if I could add the Mind Map to my collection I am building up on http://www.fuzz2buzz.com/en/mindexchange/browse-grid as I have a number of clients working on ITIL projects cheers Jennifer Thanks for the post and for including the Mind Map – very interesting content. I followed the link to ask him if I could add the Mind Map to my collection I am building up on http://www.fuzz2buzz.com/en/mindexchange/browse-grid as I have a number of clients working on ITIL projects

cheers
Jennifer

]]>