ACARM-ng – Network alert correlation framework.

ACARM-ng is an alert correlation software which can significantly facilitate analyses of a traffic in computer networks. It is responsible for collection and correlation alerts sent by network and host sensors also referred to as NIDS and HIDS respectively. Correlation process aims to reduce the total number of messages that need to be viewed by a system administrator to as few as possible by merging similar events into groups representing logical pieces of malicious activity

Platform : Unix/Linux
Download Latest version : acarm-ng-1.0.9.tar.bz2 (7.1 MB)
Find other version |
Read more In here :