Tools Used in USENIX Day One Class

I'm teaching Network Security Monitoring in about 12 hours here at USENIX LISA 2005. If any of you attendees would like to try the tools in the slides, I'm posting links to their home pages. You can download them to your machines if you like!

Here are the traces sf0.lpc and em0.lpc.


jose nazario said…
what? no matrixdump? :)
Sorry Jose, Matrixdump is not in the ports tree. :) Just kidding -- neither is Sguil.
Johnny Foo said…
And what about Yersinia?
Yersenia isn't in the ports tree either! :) It's also not a NSM tool. It's an attack or testing tool.
Anonymous said…
I tried to download the traces sf0.lpc and em0.lpc. so that i could follow the book with the exemples, but the link says that the file does not exist.
So how can i download it ASAP?

Popular posts from this blog

Zeek in Action Videos

MITRE ATT&CK Tactics Are Not Tactics

New Book! The Best of TaoSecurity Blog, Volume 4