Sguil (pronounced sgweel) is built by network security analysts for network security analysts. Sguil's main component is an intuitive GUI that provides access to realtime events, session data, and raw packet captures. Sguil facilitates the practice of Network Security Monitoring and event driven analysis.
For downloads and more information,
visit the Sguil homepage.
i have used this tool but briefly... there is plent of documentation for it and it works well on freebsd, where it can be ported in... i consider it a neccesity for network security even tho i have only used it briefly. i know it complements snort as well.
Along with your rating, you can use the comment form to post a review,
tutorial, tips and tricks, or anything else others will find useful.
If you develop this software (or work for the company), please don't rate it. You may leave a clarifying comment as long as you state your affiliation and don't specify a star rating (just leave it as “No rating”).