devialog Behavior/anomaly/signature-based syslog intrusion detection system
Download

devialog Ranking & Summary

devialog Tags

parse detect intrusion detection intrusion detect intruder syslog parser

devialog Description

Behavior/anomaly/signature-based syslog intrusion detection system devialog is an open source solution which will allow you to detect unknown attacks via anomalies in syslog. devialogcan generate signatures for ease of management, act upon anomalies in a predefined fashion or perform as a standard log parser.devialog makes syslog parsing far less of a chore than it previously has been. It is functionally the inverse of standard log monitoring software. devialog, by default, reports on what is not know in its signature base, i.e. anomalous. This type of intrusion detection system is considered behavior-based, or anomaly detection. Reporting can be in the form of an email for each anomalous log, or an email for all the logs sent within a pre-defined time window. devialog is also capable of executing commands, or simply write all anomalies to a file for periodical review.

devialog Related Software