Sourcefire Rolls Out Open-Source 'Razorback'
Razorback, however, uses the various tools to provide more context about a potential attack, he says. It handles detection in near real-time and can convert newly found intelligence on an attack into a detection mechanism for it. It's basically a framework that overlays the existing security infrastructure and lets the various tools work more in concert, according to Sourcefire.
The link for this article located at Dark Reading is no longer available.