Keep checking back. I hope to have a Cisco MARS review on here within the week.

For those interest, MARS is a groundbreaking product aimed at helping network Administrators make use of the multitude of logs they have stored around the place.

It is a product I have become very familiar with through my work. I can safely say that it has changed the way that I look at IDS/IPS not to mention the baseline procedures for these products.

Thanks for stopping by.

Edit: This may take a little longer. Just fired up my lab to realise my exploitable host was nuked. Guess I exploited it a little too much

Will throw a VM together with some open services on there.  This will allow me to show you the amount of noise generated by IPS/IDS and how MARS can reduce it!

This entry was posted on Monday, February 4th, 2008 at 10:21 pm and is filed under Reviews. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.