Prewikka is a user-friendly graphical interface for the Prelude HIDS Framework that provides a comprehensive analysis console for intrusion detection.
This latest version of Prewikka brings a handful of useful updates and fixes. Users can now personalize how alerts are sorted, and asynchronous DNS resolution is now supported in the alert view as well as in the message summary. The alert summary view was also enhanced with the ability to handle portlist and ip_version service fields, as well as reveal the alert's messageid.
Moreover, this version of Prewikka resolved certain issues, including the exception when rendering ToolAlert, and double classification escaping. The Heartbeat view also received a speed boost, which will come in handy for those who rely on this feature frequently. Language barrier is no longer a problem as a Polish translation was included. Lastly, various bugfixes and cleanups were implemented, further improving the usability and stability of Prewikka.
Version 0.9.14: N/A