Thursday, July 22, 2010
Using treemaps for tunning SIEM alerts
I had some time this week to try to apply one of the concepts presented in the book "Applied Security Visualization" from Raffael Marty. One of its chapters describes how to use treemaps for IDS tunning. So i used a similar approach for SIEM alerts tunning. And it looks pretty cool :)
Sunday, July 18, 2010
ArcSight PS bootcamp
Hi again,
first part of the summer training done, ArcSight PS Bootcamp in London. It was a good training specially for all the extra information provided by the instructor Mark Jonhston, who add great value with all his real life experience.
first part of the summer training done, ArcSight PS Bootcamp in London. It was a good training specially for all the extra information provided by the instructor Mark Jonhston, who add great value with all his real life experience.
Subscribe to:
Posts (Atom)