Section: .. / sniffers / snort /
| /// File Name: |
snort-2.6.0.1.tar.gz |
Description:
|
Snort is an open source network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Includes real time alerting, incorporating alerting mechanisms for syslog, a user specified file, a UNIX socket, or WinPopup messages via smbclient.
| | Author: | Martin Roesch | | Homepage: | http://www.snort.org | | Changes: | Added new changes to allow configurable dropping of decoder alerts in inline mode. Added updates to the Oracle database plugin to handle large data blobs and graceful disconnection. | | File Size: | 3582092 | | Last Modified: | Aug 27 20:06:25 2006 |
| MD5 Checksum: | 6b5c011fc6ef00262f3f066086bc5577 |
|
| /// File Name: |
snortsms-1.4.5.tar.gz |
Description:
|
SnortSMS is a highly configurable sensor management system that provides the ability to remotely administer Snort [and Barnyard] based Intrusion Detection Systems (IDS), push configuration files, add/edit rules, and monitor system health and statistics, all from a simple and clean Web interface console. Whether you have one or multiple Snort sensors, it can help unify and synchronize all sensor configurations.
| | Author: | SmithJ108 | | Homepage: | http://snortsms.servangle.net/ | | File Size: | 233489 | | Last Modified: | Aug 27 18:12:15 2006 |
| MD5 Checksum: | 7dd19535fc362a50dac52bfed279c96d |
|
| /// File Name: |
aanval-2.2-stable.tar.gz |
Description:
|
Aanval is a data management, correlation and analysis console designed specifically for Snort and Syslog data. Featuring custom reports, real time displays, browser-based, multi-user, multi-sensor, advanced analysis charting and graphing, host matching, custom displays, complete remote sensor management, automatic signature updating, signature editing and more.
| | Homepage: | http://www.aanval.com | | Changes: | A wide range of bug fixes, extensive performance enhancements, all new look / feel, new template system, more powerful indexer, upgraded sensor management tools and more. | | File Size: | 6214470 | | Last Modified: | Jul 26 04:34:28 2006 |
| MD5 Checksum: | 72101988df19cf78a3e77c78b570912c |
|
| /// File Name: |
snortsms-1.3.3.tar.gz |
Description:
|
SnortSMS is a highly configurable sensor management system that provides the ability to remotely administer Snort [and Barnyard] based Intrusion Detection Systems (IDS), push configuration files, add/edit rules, and monitor system health and statistics, all from a simple and clean Web interface console. Whether you have one or multiple Snort sensors, it can help unify and synchronize all sensor configurations.
| | Author: | SmithJ108 | | Homepage: | http://snortsms.servangle.net/ | | Changes: | Several database changes have occurred. | | File Size: | 229896 | | Last Modified: | Jul 24 01:35:40 2006 |
| MD5 Checksum: | 9f83442b8cf7d628f258e751d3f57a77 |
|
| /// File Name: |
snortsms-1.3.2.tar.gz |
Description:
|
SnortSMS is a highly configurable sensor management system that provides the ability to remotely administer Snort [and Barnyard] based Intrusion Detection Systems (IDS), push configuration files, add/edit rules, and monitor system health and statistics, all from a simple and clean Web interface console. Whether you have one or multiple Snort sensors, it can help unify and synchronize all sensor configurations.
| | Author: | SmithJ108 | | Homepage: | http://snortsms.servangle.net/ | | Changes: | Major rewrite of several areas. Several database changes have occurred. Various other fixes and enhancements. | | File Size: | 238300 | | Last Modified: | Jul 14 03:31:12 2006 |
| MD5 Checksum: | 3ba07feefb1ff97cb59cf8dc1dab623f |
|
| /// File Name: |
FLoP-1.6.0.tar.gz |
Description:
|
FLoP is utility designed to gather alerts with a payload from distributed Snort sensors at a central server, and to store them in a database. Both PostgreSQL and MySQL are currently supported. High priority alerts may be sent out via e-mail.
| | Author: | DG | | Homepage: | http://www.geschke-online.de/FLoP | | Changes: | Documentation was updated and extended. Various bug fixes. | | File Size: | 766604 | | Last Modified: | Jun 12 03:25:07 2006 |
| MD5 Checksum: | fbe918235e97994a50f3b54855f3c876 |
|
| /// File Name: |
snort-2.6.0.tar.gz |
Description:
|
Snort is an open source network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Includes real time alerting, incorporating alerting mechanisms for syslog, a user specified file, a UNIX socket, or WinPopup messages via smbclient.
| | Author: | Martin Roesch | | Homepage: | http://www.snort.org | | Changes: | Fixed the HTTP evasion flaw. Moved to new versioning system. | | File Size: | 3322826 | | Last Modified: | Jun 11 20:10:48 2006 |
| MD5 Checksum: | 88bb7f628e5bf1edc6409fbb126eaed0 |
|
| /// File Name: |
snort-2.4.5.tar.gz |
Description:
|
Snort is an open source network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Includes real time alerting, incorporating alerting mechanisms for syslog, a user specified file, a UNIX socket, or WinPopup messages via smbclient.
| | Author: | Martin Roesch | | Homepage: | http://www.snort.org | | Changes: | Fixed the HTTP evasion flaw. | | File Size: | 2817837 | | Last Modified: | Jun 11 20:09:44 2006 |
| MD5 Checksum: | 108b3c20dcbaf3cdb17ea9203342eaaa |
|
| /// File Name: |
sigof-0.9-rc1.tar.bz2 |
Description:
|
SIGOF (Security Information Graphics Oriented Forensic) has been developed as a complement to the ACID or BASE project by implementing useful and detailed graphical presentation of security information/events. This program can exploit any security information stored in an ACID/BASE database schema. SIGOF introduces another way to manage security forensics and analysis by providing graphical representation of statistical and security trends. This approach provides the ability to manage a large amount of security events.
| | Author: | krisstoffe | | Homepage: | http://sigof.sourceforge.net/ | | File Size: | 21621 | | Last Modified: | Apr 29 06:49:24 2006 |
| MD5 Checksum: | 10dcd8e1901d4a034db1b6e840a6a852 |
|
| /// File Name: |
aanval-2.0-stable.tar.gz |
Description:
|
Aanval is a data management, correlation and analysis console designed specifically for Snort and Syslog data. Featuring custom reports, real time displays, browser-based, multi-user, multi-sensor, advanced analysis charting and graphing, host matching, custom displays, complete remote sensor management, automatic signature updating, signature editing and more.
| | Homepage: | http://www.aanval.com | | Changes: | Brand new series 2 is a complete over-haul of the 1.x series and includes many bug fixes, performance enhancements, major look and feel changes and reporting updates. | | File Size: | 6297923 | | Last Modified: | Mar 20 16:48:16 2006 |
| MD5 Checksum: | f153d912d45395de4195eb85ec2533eb |
|
| /// File Name: |
current-attack.sh.txt |
Description:
|
Snortattack is a bash shell script that is designed to make the installation of snort in inline mode on Fedora or Debian as easy as possible.
| | Author: | snortattack | | Homepage: | http://www.snortattack.org/ | | File Size: | 3897 | | Last Modified: | Mar 15 15:03:35 2006 |
| MD5 Checksum: | 6b6a49505070bcc0fa3137a86710ae0b |
|
| /// File Name: |
snort-2.4.4.tar.gz |
Description:
|
Snort is an open source network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Includes real time alerting, incorporating alerting mechanisms for syslog, a user specified file, a UNIX socket, or WinPopup messages via smbclient.
| | Author: | Martin Roesch | | Homepage: | http://www.snort.org | | Changes: | The Snort 2.4.4 release fixes an issue where under certain conditions the frag3 preprocessor will not properly refragment stream data. Improvements have also been made to stream4 and a fix for Snort in inline mode was added. Numerous other improvements are detailed in the changelog for this release. | | File Size: | 2825187 | | Last Modified: | Mar 8 23:52:58 2006 |
| MD5 Checksum: | 9dc9060d1f2e248663eceffadfc45e7e |
|
| /// File Name: |
oinkmaster-2.0.tar.gz |
Description:
|
Oinkmaster is simple Perl script released under the BSD license to help update and manage Snort 2.0+ rules and to comment out the unwanted ones after each update. It will report what has changed since the last update, offering good change control.
| | Author: | Andreas Oestling | | Homepage: | http://oinkmaster.sourceforge.net/ | | Changes: | Major version bump to celebrate that Oinkmaster has now turned 5 years old! Check the changelog for more. | | File Size: | 80111 | | Last Modified: | Mar 8 23:01:13 2006 |
| MD5 Checksum: | d2a1b56f51cf40e919c63206ca4ec8f8 |
|
| /// File Name: |
FLoP-1.5.1.tar.gz |
Description:
|
FLoP is utility designed to gather alerts with a payload from distributed Snort sensors at a central server, and to store them in a database. Both PostgreSQL and MySQL are currently supported. High priority alerts may be sent out via e-mail.
| | Author: | DG | | Homepage: | http://www.geschke-online.de/FLoP | | Changes: | Feature enhancements and bug fixes. | | File Size: | 722347 | | Last Modified: | Feb 14 00:29:02 2006 |
| MD5 Checksum: | 284cd0579b1afda45db4ac93f2dc41d8 |
|
| /// File Name: |
aanval-1.61-stable.tar.gz |
Description:
|
The Aanval Intrusion Detection Console is the industries most advanced and feature rich snort and syslog data management and correlation system. Aanval supports multiple sensors, snort devices, syslog devices, linux/unix and Mac OS X compatible, live updating monitors, data archiving, email reporting and much, much more.
| | Homepage: | http://www.aanval.com | | Changes: | Addition of the new Aanval correlation engine, email report scheduling and many performance enhancements. | | File Size: | 7443866 | | Last Modified: | Feb 9 21:16:23 2006 |
| MD5 Checksum: | 15c098738e1c2b755b23f635c0ebfb29 |
|
| /// File Name: |
FLoP-1.5.0.tar.gz |
Description:
|
FLoP is utility designed to gather alerts with a payload from distributed Snort sensors at a central server, and to store them in a database. Both PostgreSQL and MySQL are currently supported. High priority alerts may be sent out via e-mail.
| | Author: | DG | | Homepage: | http://www.geschke-online.de/FLoP | | Changes: | Feature enhancements and bug fixes. | | File Size: | 697591 | | Last Modified: | Jan 21 15:24:53 2006 |
| MD5 Checksum: | d2a2fc3191e078c234d8b23f52a56227 |
|
| /// File Name: |
placid-2.1.tar.gz |
Description:
|
Placid is a Web-based frontend for Snort that uses MySQL. It supports searching, sorting, and graphing of events, and was designed for speed and to have little overhead.
| | Author: | Phillip Deneault | | Homepage: | http://speakeasy.wpi.edu/placid/ | | Changes: | Bug fixes, Fixed start/end time problems when searching, Added http refresh to UI, Added returned row count to search summary screen, and more. | | File Size: | 29412 | | Last Modified: | Jan 15 12:35:06 2006 |
| MD5 Checksum: | b1a34da0a60a88624812efff71cddb7e |
|
| /// File Name: |
snortsms-1.2.2.tar.gz |
Description:
|
SnortSMS is a highly configurable sensor management system that provides the ability to remotely administer Snort [and Barnyard] based Intrusion Detection Systems (IDS), push configuration files, add/edit rules, and monitor system health and statistics, all from a simple and clean Web interface console. Whether you have one or multiple Snort sensors, it can help unify and synchronize all sensor configurations.
| | Author: | SmithJ108 | | Homepage: | http://snortsms.servangle.net/ | | Changes: | Various fixes and enhancements. | | File Size: | 304885 | | Last Modified: | Jan 8 13:42:01 2006 |
| MD5 Checksum: | 40c577ee51dd2aa83c75b0a6e4960fb9 |
|
| /// File Name: |
aanval-1.60-stable.tar.gz |
Description:
|
Aanval is a web based Snort intrusion detection console. Currently supporting Snort and syslog, Aanval provides dynamic monitoring, comprehensive reporting and powerful alerting capabilities. Several primary features are account hierarchy, data-archiving, real-time data displays, auto signature updating, sensor management tools, easy upgrading, advanced searching, artificial intelligence, timezone control, charts/graphs, query saving and more.
| | Homepage: | http://www.aanval.com | | Changes: | New 1.60 features include database optimizations, many bug fixes, new user look and feel, java-based SSHTerm, and more. | | File Size: | 7422409 | | Last Modified: | Dec 18 04:36:19 2005 |
| MD5 Checksum: | d7cd76e828a1da4bc0c84774a110bcac |
|
| /// File Name: |
incident-2.9.tar.gz |
Description:
|
Incident.pl is a small script which, when given syslogs generated by snort or other tools, can generate an incident report for events that appear to be attempted security attacks, gather information on the remote host, and report the attack to the appropriate administrators.
| | Author: | Viraj Alankar | | Homepage: | http://www.bigfoot.com/~valankar/ | | Changes: | RIPE redirect stopped working due to arin result changing. Fixed. | | File Size: | 65331 | | Last Modified: | Nov 20 15:06:55 2005 |
| MD5 Checksum: | a294cb57de5f5dc3e63f3e100a8808aa |
|
| /// File Name: |
mudpit-1.5.tar.gz |
Description:
|
Mudpit is an intelligent, modular, and reliable spool processor for Snort's unified format.
| | Author: | farm9opensource | | Changes: | Added per spool configuration variables for SID/Gen map, reference, and class files. Improved logging system, log at appropriate priorities. Improved autoconf mysql detection code and support for custom plugins supplied at configure time. | | File Size: | 396227 | | Last Modified: | Oct 26 11:49:29 2005 |
| MD5 Checksum: | e2294b01bc9a225720124842386b61e2 |
|
| /// File Name: |
snort-2.4.3.tar.gz |
Description:
|
Snort is an open source network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Includes real time alerting, incorporating alerting mechanisms for syslog, a user specified file, a UNIX socket, or WinPopup messages via smbclient.
| | Author: | Martin Roesch | | Homepage: | http://www.snort.org | | Changes: | Fixed a remotely exploitable buffer overflow vulnerability in the Back Orifice preprocessor. | | File Size: | 2733590 | | Last Modified: | Oct 18 20:12:13 2005 |
| MD5 Checksum: | 5c3c8c69f2459bbe0c1f2057966c88a7 |
|
| /// File Name: |
base-1.2.tar.gz |
Description:
|
BASE is the Basic Analysis and Security Engine. It is based on the code from the Analysis Console for Intrusion Databases (ACID) project. This application provides a Web frontend to query and analyze the alerts coming from a Snort IDS.
| | Author: | Kevin Johnson | | Homepage: | http://sourceforge.net/projects/secureideas/ | | Changes: | Multiple bug fixes. Added ISC Source/Subnet report. Added TrustedSource IP lookup. Various other additions and tweaks. | | File Size: | 340007 | | Last Modified: | Oct 11 01:43:37 2005 |
| MD5 Checksum: | 66acf9b2f565cbebb1d33e49d360ed3c |
|
| /// File Name: |
snort-2.4.2.tar.gz |
Description:
|
Snort is an open source network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Includes real time alerting, incorporating alerting mechanisms for syslog, a user specified file, a UNIX socket, or WinPopup messages via smbclient.
| | Author: | Martin Roesch | | Homepage: | http://www.snort.org | | Changes: | Fixed a crash bug with -T and default logging setup. Corrected Win32 directory setup for new WinPCAP. | | File Size: | 2785710 | | Last Modified: | Oct 3 14:46:14 2005 |
| MD5 Checksum: | 6e9838b6a7bbe8bd346ae5bdc1d561f4 |
|
| /// File Name: |
snort-2.4.1.tar.gz |
Description:
|
Snort is an open source network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Includes real time alerting, incorporating alerting mechanisms for syslog, a user specified file, a UNIX socket, or WinPopup messages via smbclient.
| | Author: | Martin Roesch | | Homepage: | http://www.snort.org | | Changes: | Snort 2.4.1 has been released and addresses a bug in TCP SACK processing that could result in a DoS for some text based logging methods. In addition, this release includes changes and fixes for several issues reported by the community. | | File Size: | 2695304 | | Last Modified: | Sep 20 04:14:34 2005 |
| MD5 Checksum: | 7b7d36e063a674fd9cc324969012f32a |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
