This talk gives an overview of Network based IDS, and their limits. Several tools and techniques are then discussed to overcome these limits. The last part of the talk, based on a case study, is about network forensics.
Context & Dates
Talk made during the Microsoft Security Days, on
6 May 2004.