DAVIX
 |
The topic of this article may not meet Wikipedia's notability guidelines for products and services. Please help to establish notability by adding reliable, secondary sources about the topic. If notability cannot be established, the article is likely to be merged, redirected, or deleted. (December 2008) |
 |
|
|---|---|
 DAVIX 1.0.1 |
|
| Company / developer | Jan Monsch, Raffael Marty |
| OS family | Linux (Slax) |
| Working state | Current |
| Source model | Free and Open Source Software |
| Latest stable release | v 1.0.1 / August 6, 2008 |
| Kernel type | Monolithic kernel |
| Default user interface | KDE |
| License | Various |
| Official website | davix.secviz.org |
DAVIX is a Live CD based on Slackware for the purposes of computer security operations. The distribution focuses on data analysis and visualization [1]. DAVIX stands for Data Analysis and VIsualization linuX. It is the first Live CD to integrate so many visualization tools. The long-term goal for the distribution is to provide a good set of tools supporting the complete process of visual data analysis.
Jan Monsch began work on the CD in December 2007[2]. After discussions with Raffael Marty in January 2008, Jan agreed to produce the CD for "Applied Security Visualization" based on a list of utilities Raffael had discussed in the book[3].
Contents |
[edit] Features
DAVIX contains a collection of more than 25 free tools for data processing and visualization [4]. Some examples of the tools are:
- Data Capture - tcpdump, PADS, p0f, Snort (software), Wireshark
- Data Processing - Chaosreader, GeoIP, tcpreplay
- Data Visualization - AfterGlow, Cytoscape, Graphviz, MRTG, R Project, TimeSearcher, TNV
The DAVIX CD ships with a 15 chapter manual which covers DAVIX use and customization with examples and screenshots[5]. Additionally, most utilities on the system have documentation pages.
The DAVIX CD is based on Slax.
[edit] Security visualization
Computer information security visualization is a form of Visualization (computer graphics). In enterprise environments, computer security information can be generated in very large volumes, which can become very difficult to analyze without a visual context. Using DAVIX, a security engineer can visually spot anomalies in network traffic such as changes in IP sources/destinations, network protocols, application protocols, traffic patterns, frequency, and volume.
[edit] Current State
DAVIX was released at Black Hat Briefings/DEF CON in August 2008.[6]
[edit] References
- ^ The Davix Live CD - http://www.secviz.org/content/the-davix-live-cd
- ^ DAVIX - A Look Behind the Scene - http://www.iplosion.com/archives/63
- ^ Marty, Raffael (2008). Applied Security Visualization. Addison-Wesley Professional. Pearson Education. ISBN 0321510100.
- ^ Security Visualization - What you don’t see can hurt you - http://holisticinfosec.org/toolsmith/docs/june2008.pdf
- ^ The DAVIX Manual - http://82.197.185.121/davix/release/davix-manual-1.0.1.pdf
- ^ DAVIX 1.0.1 Released - http://www.secviz.org/content/davix-101-released
[edit] See also
[edit] External links
|
||||||||
