Network and Security Examples

The NetworkAndSecurity subdirectory of the examples directory contains several examples.

• GangliaAlerts
  An example that consists of two submodules that send alerts when the percentage of free disk space is smaller than 10%, or when the Metric column of the InData stream contains the string of "part_max_used" and the corresponding value in the Value column exceeds 90.00.
• RestaurantFraudDetection
  An example that shows how to track unusual events within a large-scale restaurant for real-time fraud detection.
• SecurityEventsCorrelation
  An example project that contains submodules that implement two methods for security events correlation. The two data input streams for the project, InVirusAlerts and InIDSAlerts, simulate alerts coming from a virus detection system and an intrusion detection system, respectively.
• SecurityLogAnalysis
  SecurityLogAnalysis is a network security demo that models a common way to look at authentication alerts in three log files (syslog, ftp authentication, and /var/log/secure log). This example demonstrates various kinds of alerts.
• SlowScanDetection
  An example that detects slow scan activity by identifying patterns of syslog entries.

---

Created March 8, 2010. Send feedback on this help topic to Sybase Technical Publications: pubs@sybase.com