Snort 1.8.1 by Martin Roesch (http://freshmeat.net/users/roesch/) Wednesday, August 15th 2001 10:42 Category: System :: Networking :: Monitoring About: Snort is a lightweight network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Snort uses a flexible rule based language to describe traffic that it should collect or pass, and a modular detection engine. Snort has a real-time alerting capability, with alert mechanisms for syslog, a user specified file, a UNIX socket, or WinPopup messages to Windows clients using Samba's smbclient. Changes: Big bugfixes for the stateful inspector, stream reassembler, IP defragmenter, and tagging subsystems. SNMP and IDMEF XML output, new anti-evasion code in the http_decode preprocessor, and limited regex/wildcards in the rules language have been added. License: GNU General Public License (GPL) URL: http://freshmeat.net/projects/snort/ -- Elias Levy SecurityFocus.com http://www.securityfocus.com/ Si vis pacem, para bellum
This archive was generated by hypermail 2b30 : Sun Aug 19 2001 - 00:05:16 PDT