The Cry Wolf IDS Simulator

Cry Wolf provides an environment for conducting controlled experiments of cyber security analysis tasks. Cry Wolf supports studying the impact of IDS false alarm rate on human analyst’s ability to correctly classify simulated alerts.

More about Cry Wolf and it’s uses:

Please contact Lucas Layman (laymanl@uncw.edu) If you are interested in using Cry Wolf.

Screenshots

Alert Table

alt text The main alert table. Event numbers are links to alert details.

Alert Evalation Form

alt text The alert details screen and evaluation form. Participants select their decision and a confidence rating. A confidence rating is not required for “I don’t know” answers.

Security Playbook

alt text alt text The Security Playbook shown to participants during training and available during the main alert evaluation task.

Training Event

alt text alt text

An example training event.