Aanval
Encyclopedia
Aanval is a commercial SIEM product designed specifically for use with Snort
and Syslog
data. Aanval has been in active development since 2003 and remains one of the longest running Snort capable SIEM products in the industry.
Aanval is Dutch
for "attack".
Aanval's original success was in providing AJAX
style, security event monitoring and reporting from a web-browser. Since Aanval's creation, it has become an intrusion detection
, correlation and threat management
console with a specific focus on normalizing Snort and Syslog data.
In 2010 Aanval was the first intrusion detection vendor to provide an integrated iOS App that allowed users to view security events remotely from an iPhone
, iPad
and iPod Touch
.
Several information security related books have been published that include details and references to Aanval, including "Linux Server Security, Second Edition" by O'Reilly Media
, "Security Log Management" by O'Reilly Media
, "Snort®: IDS and IPS Toolkit" by O'Reilly Media
and as recently as 2010 "Unix® and Linux® System Administration Handbook, Fourth Edition" by O'Reilly Media
.
Snort (software)
Snort is a free and open source network intrusion prevention system and network intrusion detection system , created by Martin Roesch in 1998...
and Syslog
Syslog
Syslog is a standard for computer data logging. It allows separation of the software that generates messages from the system that stores them and the software that reports and analyzes them...
data. Aanval has been in active development since 2003 and remains one of the longest running Snort capable SIEM products in the industry.
Aanval is Dutch
Dutch language
Dutch is a West Germanic language and the native language of the majority of the population of the Netherlands, Belgium, and Suriname, the three member states of the Dutch Language Union. Most speakers live in the European Union, where it is a first language for about 23 million and a second...
for "attack".
History
Aanval was created by Loyal Moses in 2003 but was not publicly made available until March 2004 where it was released under the private commercial license C1-RA1008. Throughout the lifecycle of the software it has also been referred to as OpenAanval and ComAanval in addition to its current and registered trademark name Aanval.Aanval's original success was in providing AJAX
Ajax
- Mythology :* Ajax , son of Telamon, ruler of Salamis and a hero in the Trojan War, also known as "Ajax the Great"* Ajax the Lesser, son of Oileus, ruler of Locris and the leader of the Locrian contingent during the Trojan War.- People :...
style, security event monitoring and reporting from a web-browser. Since Aanval's creation, it has become an intrusion detection
Intrusion detection
In Information Security, intrusion detection is the act of detecting actions that attempt to compromise the confidentiality, integrity or availability of a resource. When Intrusion detection takes a preventive measure without direct human intervention, then it becomes an Intrusion-prevention...
, correlation and threat management
Unified threat management
Unified Threat Management is a comprehensive solution that has recently emerged in the network security industry and since 2004, has gained widespread currency as a primary network gateway defense solution for organizations...
console with a specific focus on normalizing Snort and Syslog data.
In 2010 Aanval was the first intrusion detection vendor to provide an integrated iOS App that allowed users to view security events remotely from an iPhone
IPhone
The iPhone is a line of Internet and multimedia-enabled smartphones marketed by Apple Inc. The first iPhone was unveiled by Steve Jobs, then CEO of Apple, on January 9, 2007, and released on June 29, 2007...
, iPad
IPad
The iPad is a line of tablet computers designed, developed and marketed by Apple Inc., primarily as a platform for audio-visual media including books, periodicals, movies, music, games, and web content. The iPad was introduced on January 27, 2010 by Apple's then-CEO Steve Jobs. Its size and...
and iPod Touch
IPod Touch
The iPod Touch is a portable media player, personal digital assistant, handheld game console, and Wi-Fi mobile device designed and marketed by Apple Inc. The iPod Touch adds the multi-touch graphical user interface to the iPod line...
.
Several information security related books have been published that include details and references to Aanval, including "Linux Server Security, Second Edition" by O'Reilly Media
O'Reilly Media
O'Reilly Media is an American media company established by Tim O'Reilly that publishes books and Web sites and produces conferences on computer technology topics...
, "Security Log Management" by O'Reilly Media
O'Reilly Media
O'Reilly Media is an American media company established by Tim O'Reilly that publishes books and Web sites and produces conferences on computer technology topics...
, "Snort®: IDS and IPS Toolkit" by O'Reilly Media
O'Reilly Media
O'Reilly Media is an American media company established by Tim O'Reilly that publishes books and Web sites and produces conferences on computer technology topics...
and as recently as 2010 "Unix® and Linux® System Administration Handbook, Fourth Edition" by O'Reilly Media
O'Reilly Media
O'Reilly Media is an American media company established by Tim O'Reilly that publishes books and Web sites and produces conferences on computer technology topics...
.
See also
- Intrusion detection system (IDS)
- Intrusion prevention system (IPS)
- Network intrusion detection systemNetwork intrusion detection systemA Network Intrusion Detection System is an intrusion detection system that tries to detect malicious activity such as denial of service attacks, port scans or even attempts to crack into computers by Network Security Monitoring of network traffic.A NIDS reads all the incoming packets and tries to...
(NIDS) - SguilSguilSguil is a collection of Free software components for Network Security Monitoring and event driven analysis of IDS alerts. The sguil client is written in Tcl/Tk and can be run on any operating system that supports Tcl/Tk...