bamm
June 29th, 2004, 12:18
I know there was discussions on sguil a while back so I thought I'd submit a post about our new release (http://sguil.sf.net). If you guys would prefer I don't use this board for that purpose then please let me know.

Also, Richard Bejtlich (http://taosecurity.blogspot.com) received permission to post a chapter (http://sguil.sourceforge.net/downloads/tao_of_nsm_ch10_isbn_0321246772_copyright_2004_pea +rson.pdf) of his book (http://www.taosecurity.com/books.html) (The Tao of Network Security Monitoring: Beyond Intrusion Detection) online. The chapter is titled "Alert Data: NSM Using Sguil" and it provides detailed examples of using sguil and how all the pieces interrelate.

Bammkkkk

bsdjunkie
June 29th, 2004, 12:49
Great, Cant wait to check it out. Im a few versions behind currently, but this will give me a reason to update =)

Strog
June 29th, 2004, 17:51
Bamm,

Feel free to make the annouments here. Squil is a great project. I know there's a few of us around here that use it and wouldn't mind having a little discussion about it.

Kernel_Killer
June 29th, 2004, 19:37
Thanx bamm! Yeah looks like I'll be updating as well. After I fix my tcl/tk.

elmore
June 30th, 2004, 02:53
If you guys would prefer I don't use this board for that purpose then please let me know.

As Strog already said, feel free to use this board for whatever announcements you like relating to this project. Several of us are watching your project very closely.

Kernel_Killer
July 1st, 2004, 01:15
Wow Bamm! Looks great! Seems quite a bit faster as well!

/me claps!