Software:DAVIX
DAVIX 1.0.1 | |
Developer | Jan Monsch, Raffael Marty |
---|---|
OS family | Unix-like |
Working state | Current |
Source model | Open source |
|Final release|Latest release}} | v 1.0.1 / August 6, 2008 |
Kernel type | Monolithic kernel |
Default user interface | KDE |
License | Various |
Official website | davix.secviz.org |
DAVIX is a Live CD based on Slackware for the purposes of computer security operations. The distribution focuses on data analysis and visualization.[1] DAVIX stands for Data Analysis and VIsualization Linux. It is the first Live CD to integrate so many visualization tools. The long-term goal for the distribution is to provide a good set of tools supporting the complete process of visual data analysis.
Jan Monsch began work on the CD in December 2007.[2] After discussions with Raffael Marty in January 2008, Jan agreed to produce the CD for "Applied Security Visualization" based on a list of utilities Raffael had discussed in the book.[3]
Features
DAVIX contains a collection of more than 25 free tools for data processing and visualization.[4] Some examples of the tools are:
- Data Capture - tcpdump, PADS, p0f, Snort, Wireshark
- Data Processing - Chaosreader, GeoIP, tcpreplay
- Data Visualization - AfterGlow, Cytoscape, Graphviz, MRTG, R Project, TimeSearcher, TNV
The DAVIX CD ships with a 15 chapter manual which covers DAVIX use and customization with examples and screenshots.[5] Additionally, most utilities on the system have documentation pages.
The DAVIX CD is based on Slax.
Security visualization
Computer information security visualization is a form of Visualization (computer graphics). In enterprise environments, computer security information can be generated in very large volumes, which can become very difficult to analyze without a visual context. Using DAVIX, a security engineer can visually spot anomalies in network traffic such as changes in IP sources/destinations, network protocols, application protocols, traffic patterns, frequency, and volume.
Current State
DAVIX was released at Black Hat Briefings/DEF CON in August 2008.[6]
See also
References
- ↑ The Davix Live CD - http://www.secviz.org/content/the-davix-live-cd
- ↑ DAVIX - A Look Behind the Scene - http://www.iplosion.com/archives/63
- ↑ Marty, Raffael (2008). Applied Security Visualization. Addison-Wesley Professional. Pearson Education. ISBN 0-321-51010-0.
- ↑ Security Visualization - What you don’t see can hurt you - http://holisticinfosec.org/toolsmith/pdf/june2008.pdf
- ↑ The DAVIX Manual - http://82.197.185.121/davix/release/davix-manual-1.0.1.pdf[yes|permanent dead link|dead link}}]
- ↑ DAVIX 1.0.1 Released - http://www.secviz.org/content/davix-101-released
External links