Thursday, November 12, 2009

DIY Threat Monitoring System

Building your own threat monitoring system can be done using the above architecture, you will need to write some connectors and parsers to filter data and check if your IPs or URLs appear in any of the free public databases I am using perl and shell scripts along with Mysql database. Visualization can be done using google charts API, which has nice easy-to-use charts.
If you are a cloud fan, you can use Amazon cloud for your system and Amazon SimpleDB instead of Mysql.

Comments? . . . . . .

No comments: