Cyberprobe is a network attack monitoring software stack. It collects data packets for inspection, logging and analysis. It can be integrated with snort to record the actual intrusion source. While Cybermon is highly configurable protocol decoder and analysis tool, which can also automate responses such as dynamic connection resets, firewalling or forged DNS replies.
0.5108 Oct 2014 00:20
Source and packages for Debian Wheezy, Fedora 20, Centos 7. Man pages added to build system. Turn off IP checksum checking - doesn't work on some systems (e.g. Mac). Fixed the timezone problem in dashboard - time stored is GMT. Fixed TTL (expiry of records) in ElasticSearch schema. Also,
minor mod to Kibana schema.