snort-2.0.0.tar.gz

snort-2.0.0.tar.gz: Posted Apr 15, 2003; Authored by Martin Roesch | Site snort.org; Snort is an open source network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Includes real time alerting, incorporating alerting mechanisms for syslog, a user specified file, a UNIX socket, or WinPopup messages via smbclient.; Changes: Enhanced high-performance detection engine, Stateful Pattern Matching, An external third party professional security audit funded by Sourcefire (http://www.sourcefire.com), Many new and updated rules, Enhancements to self preservation mechanisms in stream4 and frag2, State tracking fixes in stream4, New HTTP flow analyzer, Enhanced protocol decoding (TCP options, 802.1q, etc), Enhanced protocol anomaly detection (IP, TCP, UDP, ICMP, RPC, HTTP), etc.; tags | tool, overflow, cgi, sniffer, protocol; systems | unix; MD5 | b7d374655c4390c07b2e38a2d381c2bd; Download | Favorite | Comments (0)

Comments

No comments yet, be the first!