[Bro] automation
anthony kasza
anthony.kasza at gmail.com
Sun May 1 10:27:29 PDT 2016
Bro has the ability to execute system commands when something occurs. This
something dies not have to be an alert. It can be pretty much any event
occurring on the network Bro is monitoring.
For clarification, Bro does not have alerts the same way a traditional IDS
might. Instead, Bro has something similar called notifications.
-AK
On May 1, 2016 7:37 AM, "Thierry Boibary" <trazom.informatique at free.fr>
wrote:
> Hi,
>
> is it possible in BRO to execute commands automatically hent an alert is
> detected?
>
> Thanks
> T.
>
> _______________________________________________
> Bro mailing list
> bro at bro-ids.org
> http://mailman.ICSI.Berkeley.EDU/mailman/listinfo/bro
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20160501/e9fc1922/attachment.html
More information about the Bro
mailing list