IDS

Overview

Logs from IDS (intrusion detection systems) will monitor your network for suspicious activity or violations, and if found, will report them to the SIEM.

Collection Method

  • Listen for Syslog
  • Log Aggregator

List of IDS Event Sources for InsightOps

  • Corero IPS
  • Dell iSensor
  • HP TippingPoint
  • McAfee IDS
  • Metaflows IDS
  • Security Onion
  • Snort IDS
  • Sourcefire 3D