Information Security Research

Published Technical White Papers

• HAWK Event Correlation SIEM Executive Brief  
  
  Faced with a growing backlog of event-log entries and false positives, businesses are turning to event-log correlation tools to streamline security analysis and performance monitoring.
  The Heuristically Advanced Warning Konsole, (HAWK), consists of a multicomponent solution for the handling and data mining of multiple third party alerting sources. This functionally provides an analyst or administrator the ability to consolidate and correlate information into grouped sets, enabling the user to monitor for intrusion anomalies and/or otherwise critical information related to your network infrastructure.
  HAWK uses data retained from external alert sources to logically createassociations between similar data. The similarities are drawn by utilizing datamining and analysis in order to correlate information for secure storage and future retrieval. HAWK logs the correlated data into a relational database available for advanced data management.
  
  By William M. Townsend
  Managing Director
  Tel. 512-228-2400
  E-mail:
  

Our researchers are highly trained professionals with countless years in the information security industry and have found significant security related vulnerabilities in a number of high profile, enterprise applications. Our contributions to the information security industry represents our small part to the commitment of securing our present and future technologies.