Using Argus

Getting Argus

Argus Wiki

Development

Documentation

Publications

Support

Links

News

• 

Fri Mar 19 10:12:27 EDT 2010 – Argus-3.0.3 available for developers

Argus-3.0.2 is stable the mailing lists are quiet, and its a beautiful spring like day in New York City.

Be sure and checkout the Argus Wiki, as there has been some new additions that desribe tools and techniques that should be useful to everyone!!

Work on the todo list is progressing!!! Client software will be the topic for a while, as I'll be adding new clients programs to argus-3.0.3 in the next 2 weeks. We've brought back ragrep(), to deal with regular expressions that are too large for the command line, and the new program now supports a good number of the traditional grep() options. Man page is included in the new developers release pacakge. If anyone has a need for additional grep() like features, such as 'before-context' or 'after-context' options, just send email to the developers list!!

Argus archive management, and analysis tool development is high on the list of things to do, and one focus is to continue describe the features and technology around the MySQL database support. Of particular interest to the security community has been beacon detection, where you want to know if a host on the inside "chirps" to an external address. You can detect this readily with argus data, and we'll be developing a database schema and some simple tools that do this on the developers mailing list.

Should be fun!!!!

Page Last Modified: 10:40:16 EDT 26 Mar 2010                      ©Copyright 2000 - 2010 QoSient, LLC. All Rights Reserved.