I've recently started looking into snort. After a little playing around with the command line I would like to take a look at some GUI's.
After some initial searching I see BASE is a popular choice.
I'd like to get some feedback on what other forum members are using currently using.
Thanks in advance!
A third party security audit is the IT equivalent of a colonoscopy. It's long, intrusive, very uncomfortable, and when it's done, you'll have seen things you really didn't want to see, and you'll never forget that you've had one.
That sounds like exactly the setup I'm looking for. Thanks Streaker.
Also, might not be exactly what you're looking for if you want only a Snort GUI, but you might want to check out the OSSIM project
pfsense also has a GUI for Snort administration; makes managing the rules very easy, however I found pfsense and ossim to be somewhat bloated.
BASE is probably what you need.
dd if=/dev/swc666 of=/dev/wyze
for a "quick and dirty" build, i would go with snort-base plus ntop.
OSSIM is not a bad choice in my opinion, but it does need a lot of work to setup and install.
"Sure is for people with nothing on the line.....you and me? We just get on with it."
Though it's nagged, there's a free licens for trial.
Try out Aanval from aanval.com, nice work guys. Not perfect by far but really nice work.