The original post: /r/cybersecurity by /u/Biyeuy on 2024-07-04 18:09:27.
In mind the stack levels upwards ntopng?
As of time being some network segments are geared with IDS, at one point on network an IPS. I wonder how to incorporate these in the SIEM architecture. Should IDS feed SIEM with data rather than consume its output?
You must log in or register to comment.