This software captures entire sessions for analysis.
One of the standout features of Realeyes is its analysis engine, a powerful C library of functions designed to maintain state information and analysis results about data streaming. Users can easily build applications on this analysis engine to search for complex patterns, output information about data, and even transform it.
Realeyes has been thoroughly tested on several different Linux distributions, but it is also expected to perform well on any Unix system. The IDS application, which is the first to be developed using this library, utilizes live or captured network traffic and reassembles sessions to analyze them for patterns.
Detected records are then extracted and transferred to a PostgreSQL database that maintains configuration information sent to IDS hosts for dynamic reconfiguration. The database interface can communicate with one or more hosts.
The user interface is a Java application that uses the Standard Widget Toolkit from the Eclipse project. It has been tested on several Linux distributions and Microsoft Windows, and is used to manage the application, analyze detected network traffic and create reports to promote secure environments.
All Realeyes technologies are licensed under GPLv3, and are originally developed on the GNU/Linux v2.6 operating system.
Version 0.9.5: N/A