* Aaron [TF]

  • Total activity 93
  • Last activity
  • Member since
  • Following 0 users
  • Followed by 0 users
  • Votes 0
  • Subscriptions 47

Articles

Recent activity by * Aaron [TF] Recent activity Votes
  • Advanced Search

    Aanval's search mechanism is important to understand, as it is a powerful console management tool in addition to the basic functionality of searching and reporting. There are two primary ways to ac...

  • Adding a Snort or Suricata Sensor

    Summary Aanval defines a sensor as an instance of Snort or Suricata which is configured to output alert details in unified2 format. Aanval requires a running instance of Snort or Suricata, and this...

  • How do I delete Aanval's web cache?

    Aanval uses a web caching system to increase console performance and minimize as much wasteful resource consumption as possible. Cache location Cache for Aanval is located in the /var/cache directo...

  • Providing alphabet and stamp keys for license generation

    What is an Alphabet and Stamp key? Aanval 9 requires console specific details in order for a compatible license to be generated. Licenses are specific to each console installation. After purchasing...

  • How do I update Aanval without an Internet connection?

    We've included the --local option for our manual updating command with Aanval 9 that allows users to locally provide the update package that Aanval will use. Preparation First, you will need to obt...

  • SMT (Sensor Management Tool) Troubleshooting

    The SMTs are simplistic in their operation, and need only a few basic configuration settings in order to operate properly. Basic configuration options for the SMTs are found in the smtConfig.php, f...

  • SMT (Sensor Management Tool) Installation

    Installation The Sensor Management Tools are responsible for sending Unified2 events to the Aanval console. Additionally, they enable the management of IDS engine services and signatures from withi...

  • Snort vs Suricata

    Snort vs Suricata Feature Comparison Snort has been the de facto IDS engine for years; it has an enormous community of users, and an even larger span of subscribers to Snort rules that are ever-aug...

  • Signature Management

    In Aanval, Snort and Suricata signatures are managed in a dedicated Signature Management display that is accessed through the Policy display. Select a policy, then select the Signatures button. On...

  • How do I delete events?

    Conventional Deletion To delete events in Aanval, simply perform a search for the events you would like to permanently delete from the system, and select the delete button. You will be redirected t...