Partners| Technology

Thanks to the use of the format IDMEF (RFC 4765) and LibPrelude, Prelude is natively compatible with all major Open-Source anti-intrusion sensors. Therefore, these probes can be stored at the Prelude manager and submit their notifications directly.

 

The Benefits 

  • Reduced volumes of logs to be transmitted over the network (only the alerts are sent)
  • Top response time of the SIEM solution
  • Opportunity to improve network security by relying on open-source components
  • Compliance with the IDMEF standard and its wealth for your network different components

The installation and configuration of these probes on your system is available through the service Prelude Deploy

Probe Function Website
Snort NIDS (Network Intrusion Detection System) www.snort.org
Surricata NIDS www.suricata-ids.org
Ossec HIDS (Host Detection Intrusion System) www.ossec.net
Samhain HIDS la-samhna.de/samhain
Orchids Forensique projects.lsv.ens-cachan.fr
Mod-security WAF (Web Application Firewall) www.modsecurity.org
ClamAV Anti-virus www.clamav.net
SpamAssassin Anti-Spam spamassassin.apache.org/
Squid Proxy www.squid-cache.org/
CrawlProtect WAF PHP www.crawltrack.fr/crawlprotect/
Auditd Sécurité Noyau Distribution Linux