.:[ packet storm ]:.
                               
trust nothing
trust nothing

 Section:  .. / sniffers / snort  /

Snort is an excellent intrusion detection system and packet sniffer for many unix platforms. Homepage is http://www.clark.net/~roesch/security.html

Page 8 of 10
<< 1 2 3 4 5 6 7 8 9 10 >> Files 175 - 200 of 235
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: SnortSnarf-100400.1.tar.gz
Description:
 SnortSnarf is a Perl program to take files of alerts from the free Snort Intrusion Detection System, and produce HTML output intended for diagnostic inspection and tracking down problems. It uses a cron job to produce a daily/hourly/whatever file of snort alerts. This script can be run on each such file to produce a convenient HTML breakout of all the alerts.
Author:Stuart Staniford
Homepage:http://www.silicondefense.com/snortsnarf
Changes:New CGI script to show an updated list of alerts as text, added www.snort.org port lookup links, improved wrapping on some browsers, and bug fixes.
File Size:66524
Last Modified:Oct 8 14:28:34 2000
MD5 Checksum:9604cef4264c0ae9c8f883b9c00e4d6d

 ///  File Name: snort2html15.txt
Description:
 Snort2HTML v1.5 converts Snort Intrusion Detection System logs into nicely-formatted HTML.
Author:Daniel Swan
Homepage:http://www.clark.net/~roesch/security.html
Changes:Parsing for ICMP alerts, optimized code, input/output files now can be specified on the command line, and more.
File Size:11095
Last Modified:Oct 4 18:13:09 2000
MD5 Checksum:cd5e3a4daf979cf274773af56b3128df

 ///  File Name: snort-1.6.3-patch2.tar.gz
Description:
 Snort is a lightweight network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Snort uses a flexible rules language to describe traffic that it should collect or pass, as well as a detection engine that utilizes a modular plugin architecture.
Author:Martin Roesch
Homepage:http://www.snort.org
Changes:Patch2 - Very minor fixes. Requires libpcap. Snort Howto here.
File Size:330321
Last Modified:Oct 2 16:43:04 2000
MD5 Checksum:6fd76cac4a5c65a020e13954f850481e

 ///  File Name: Spade-092200.1.tar.gz
Description:
 Spade stands for Statistical Packet Anomaly Detection Engine. It is a Snort preprocessor plugin to report and score unusual, possibly suspicious, packets. The anomaly score that is assigned is based on the observed history of the network. The fewer times that a particular kind of packet has occurred in the past, the higher its anomaly score will be. Based on the SPICE Whitepaper.
Author:James Hoagland,Stuart Staniford
Homepage:http://www.silicondefense.com/spice
File Size:67710
Last Modified:Sep 30 21:33:13 2000
MD5 Checksum:f267f2e710d4c208d0810689f5900f86

 ///  File Name: SnortSnarf-090700.1.tar.gz
Description:
 Unavailable.
File Size:64762
Last Modified:Sep 29 10:12:23 2000
MD5 Checksum:a9d016c23460eccf547612fad46479e7

 ///  File Name: snorticus-1.0.tar.gz
Description:
 Snorticus is a collection of shell scripts designed to allow easy managment of Snort sensors. It allows you to routinely collect Snort sensor data, analyze the data via SnortSnarf, and easily maintain rule files.
Author:Paul Ritchey
Homepage:http://snorticus.baysoft.net/
File Size:15870
Last Modified:Sep 27 16:36:12 2000
MD5 Checksum:89cca73c48f8b2da94bfbba6ca02c400

 ///  File Name: snortstart
Description:
 Snortstart v0.17 is a bash script which acts as a wrapper for starting snort which aims to install, start and stop snort in a chroot jail under unprivileged user and group.
Author:Zas
Homepage:http://www.norz.org/software/snortstart.html
File Size:12667
Last Modified:Sep 21 19:45:54 2000
MD5 Checksum:a82c851f6dc8fbcfd78e21e70f1a994c

 ///  File Name: snort.panel.zip
Description:
 Snort Panel is a front-end control panel for the win32 port of snort. It allows you to set command-line options via dialog box settings and it monitors the alerts file for new alerts.
Homepage:http://www.xato.net/downloads
File Size:469560
Last Modified:Sep 18 15:00:03 2000
MD5 Checksum:9e10fc1cf66c88e46c9dd724b1971b99

 ///  File Name: dupl.pl
Description:
 dupl.pl v0.4 is a snort rules beautifier which removes duplicate rules from *-lib, vision.conf, and xxxx-rules files.
Author:Zas
Homepage:http://www.norz.org
File Size:14617
Last Modified:Aug 14 14:59:15 2000
MD5 Checksum:a9fd81622de9c25ef6be15f4dfcd356b

 ///  File Name: snort-1.6.3.tar.gz
Description:
 Snort is a lightweight network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Snort uses a flexible rules language to describe traffic that it should collect or pass, as well as a detection engine that utilizes a modular plugin architecture.
Author:Martin Roesch
Homepage:http://www.snort.org
Changes:This version has been well tested and contains many fixes. Now compiles on more platforms and can locate libpcap more accurately, fixed ICMP ping packet id/sequence printouts, updated portscan detector, and more. Requires libpcap. Snort Howto here.
File Size:329712
Last Modified:Jul 24 13:19:38 2000
MD5 Checksum:5d628b08c0bf42af3affc9fcfca7ea69

 ///  File Name: snort-1.6.2.2-win32-static.zip
Description:
 Snort 1.6.2.2 ported to Windows - This is a working port of Snort to Windows NT/2000/9x. Changes include interface names, filenames, and syslog changes. Source available here.
Author:Michael Davis
Homepage:http://www.datanerds.net/~mike
File Size:510548
Last Modified:Jul 12 16:41:27 2000
MD5 Checksum:692a20c9839f6e39c333781669a3effb

 ///  File Name: 06082kfalse.rules
Description:
 False snort rules last updated 06/08/2000. Detects Yahoo pager data, AOL chat data, SNMP, SMB queries, etc.
Author:Jim Forster
Homepage:http://www.snort.org
File Size:1503
Last Modified:Jul 12 14:19:05 2000
MD5 Checksum:d0f2cc0986bd11ac9b055f9b9941771d

 ///  File Name: 06082kbackdoor.rules
Description:
 Updated snort rules to detect backdoors last updated 06/08/2000.
Author:Jim Forster
Homepage:http://www.snort.org
File Size:28871
Last Modified:Jul 12 14:15:18 2000
MD5 Checksum:2f08eb36838d03749fffaa0b1444011a

 ///  File Name: 07062kany.rules
Description:
 Full set of updated snort rules using using 'any' instead of "$HOME_NET" variables. Last updated 07/06/2000.
Author:Jim Forster
Homepage:http://www.snort.org
Changes:Fix for quote problems causing false alerts and non-detection, lots more rules.
File Size:96548
Last Modified:Jul 12 14:13:10 2000
MD5 Checksum:b579a034bafe7191f4ed414bb173f9ba

 ///  File Name: 07062k.rules
Description:
 Full set of updated snort rules last updated 07/06/2000.
Author:Jim Forster
Homepage:http://www.snort.org
Changes:Fix for quote problems causing false alerts and non-detection, lots more rules.
File Size:106044
Last Modified:Jul 12 14:10:37 2000
MD5 Checksum:25c23873db11db0a33555b75b0e48e0e

 ///  File Name: SnortSnarf-062000.1.tar.gz
Description:
 SnortSnarf is a Perl program to take files of alerts from the free Snort Intrusion Detection System, and produce HTML output intended for diagnostic inspection and tracking down problems. The model is that one is using a cron job or similar to produce a daily/hourly/whatever file of snort alerts. This script can be run on each such file to produce a convenient HTML breakout of all the alerts.
Author:Stuart Staniford
Homepage:http://www.silicondefense.com/snortsnarf
File Size:57272
Last Modified:Jul 12 13:59:34 2000
MD5 Checksum:e76e23b9d9b77788d07c799729c120ed

 ///  File Name: snort-1.6.2.2.tar.gz
Description:
 Snort is a lightweight network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Snort uses a flexible rules language to describe traffic that it should collect or pass, as well as a detection engine that utilizes a modular plugin architecture.
Author:Martin Roesch
Homepage:http://www.snort.org
Changes:Minor requires libpcap. Snort Howto here.
File Size:326269
Last Modified:Jul 10 14:58:24 2000
MD5 Checksum:ffdab83a98faa07c5d43835354cbcfa8

 ///  File Name: snort-1.6.2.tar.gz
Description:
 Snort is a lightweight network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Snort uses a flexible rules language to describe traffic that it should collect or pass, as well as a detection engine that utilizes a modular plugin architecture.
Author:Martin Roesch
Homepage:http://www.snort.org
Changes:Compilation fixes for Linux and Tru64, fixed minor problems with running under Linux. Requires libpcap.
File Size:325588
Last Modified:Jul 8 18:16:17 2000
MD5 Checksum:37d94f4ff174effd12b58349234912aa

 ///  File Name: snort-1.6.1.tar.gz
Description:
 Snort is a lightweight network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Snort uses a flexible rules language to describe traffic that it should collect or pass, as well as a detection engine that utilizes a modular plugin architecture.
Author:Martin Roesch
Homepage:http://www.snort.org
Changes:This release is mostly a bug fix with a few minor feature additions for runtime security. New features include a IP defragmentation plugin, New output plugins cover all old logging and alerting options, Updated portscan detection functionality, Added -O IP address obfuscation switch, Added -t chroot switch. Requires libpcap.
File Size:325024
Last Modified:Jul 7 20:35:41 2000
MD5 Checksum:82e2a0e435060e2108782e7448e5db44

 ///  File Name: snort-1.6-win32-static.zip
Description:
 Snort 1.6 ported to Windows - This is a working port of Snort to Windows NT/2000/9x. (Includes source and binaries). Changes include interface names, filenames, syslog changes.
Author:Michael Davis
Homepage:http://www.datanerds.net/~mike
File Size:385159
Last Modified:Jun 9 17:09:01 2000
MD5 Checksum:88c6626528e3b4ad74e5485ef570b7dc

 ///  File Name: 05172K.rules
Description:
 Snort's full and current rule set. Last Updated 5/17/200.
Homepage:http://snort.rapidnet.com
File Size:0
Last Modified:May 17 17:53:00 2000
MD5 Checksum:d41d8cd98f00b204e9800998ecf8427e

 ///  File Name: 5n0r7.c
Description:
 5n0r7 is a snort alert file parser. It sorts the alerts based on source IP, destination IP, and frequency. 5n0r7 allows one to detect attacks (portscans, probes, or whatever snort is configured to alert) right away when displaying the sorted alert file.
Author:Michel Kaempf
Homepage:ftp://snort.via.ecp.fr
File Size:26652
Last Modified:Apr 21 22:08:53 2000
MD5 Checksum:1b0e307dff6afb9a5952345816f1dac3

 ///  File Name: spp_portscan-0.2.9.c
Description:
 spp_portscan.c - Snort Portscan Preprocessor logs port scans through snort.
Homepage:http://spyjurenet.com/linuxrc.org/projects/snort/
File Size:34667
Last Modified:Mar 30 04:14:31 2000
MD5 Checksum:f4ba1465c9f2773aba3d045bb53f48ad

 ///  File Name: 03202k.rules
Description:
 Over 800 rules for the Snort IDS software. Last updated 3/25/2000.
Homepage:http://snort.rapidnet.com/
File Size:84110
Last Modified:Mar 30 03:47:18 2000
MD5 Checksum:0d5582f6a5bb380efbe0b61f461acd54

 ///  File Name: backdoor.rules
Description:
 300 snort rules to detect windows backdoors.
Homepage:http://snort.rapidnet.com/
File Size:28531
Last Modified:Mar 29 16:04:00 2000
MD5 Checksum:a492cdf4bdd3109aaba4bf7d8fd36591
 

 ///  Last 10 Files
  1. :· dsa-1668-1.txt
  2. :· wireshark104-dos.txt
  3. :· ksplice-0.9.4-src.tar.gz
  4. :· MDVSA-2008-235.txt
  5. :· cambridge-sql.txt
  6. :· verlihub-exec.txt
  7. :· DDIVRT-2008-15.txt
  8. :· openssh-cbc-adv.txt
  9. :· joomlathyme-sql.txt
  10. :· BitDefenderDOS.zip
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· dsa-1668-1.txt
  2. :· wireshark104-dos.txt
  3. :· MDVSA-2008-235.txt
  4. :· DDIVRT-2008-15.txt
  5. :· openssh-cbc-adv.txt
  6. :· ZDI-08-076.txt
  7. :· ZDI-08-075.txt
  8. :· MDVSA-2008-233.txt
  9. :· SSRT080059.txt
  10. :· MDVSA-2008-220-1.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· cambridge-sql.txt
  2. :· verlihub-exec.txt
  3. :· joomlathyme-sql.txt
  4. :· BitDefenderDOS.zip
  5. :· kvirc-exec.txt
  6. :· vcalendar-disclose.txt
  7. :· toursmanager-blindsql.txt
  8. :· phprsgal-sql.txt
  9. :· natterchat-sql.txt
  10. :· php526-bypass.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· ksplice-0.9.4-src.tar.gz
  2. :· fwknop-1.9.9.tar.gz
  3. :· pysumpas-0.2.0.tar.gz
  4. :· framework-3.2.tar.gz
  5. :· tor.uclibc.i686.20081115.iso
  6. :· RFIDIOt-Windows-0.1u.zip
  7. :· RFIDIOt-0.1u.tgz
  8. :· dps-v1.5.tar.gz
  9. :· smbrelay3.zip
  10. :· mptrey.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· java2-malware.pdf
  2. :· return-to-libc-linux.txt
  3. :· stack-overflow-linux.txt
  4. :· smallest_setuid_execve_sc.c
  5. :· sudoers-shellcode.txt
  6. :· strongswan-4.2.9.tar.gz
  7. :· hodetector-shellcode.txt
  8. :· rtm-essential5.pdf
  9. :· unixasm-1.3.0.tar.gz
  10. :· bnd-networks.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice