| Snort 2.8.3.1 | *NIX-SOFT -> Сеть |
|
|
Версия для печати темы
Нажмите сюда для просмотра этой темы в оригинальном формате
Твой софтовый форум *NIX-SOFT -> Сеть Snort 2.8.3.1
Автор: ЭЖД 14.06.2006 - 14:27
Snort 2.6.0Выход Snort, популярной свободной системы обнаружения атак (IDS), версии 2.4.5 завершает развитие ветки 2.4.x. И одновременно с ней выпущена первая версия новой ветки проекта — Snort 2.6.0.
В Snort 2.6 проведена работа по увеличению производительности, появилась реализация системы динамических правил и динамических предпроцессоров.
В обеих версиях усовершенствована обработка RPC-вызовов, улучшена работа систем определения факта сканирования портов и контроля HTTP-соединений.
Home_http://www.snort.org/
Downloads (~3,17 Mb)_http://www.snort.org/dl/current/snort-2.6.0.tar.gz
2.4.5 (~2,69 Mb)_http://www.snort.org/dl/current/snort-2.4.5.tar.gz
Автор: ЭЖД 12.03.2007 - 13:38
Snort 2.6.1.3ChangeLog_http://www.snort.org/docs/release_notes/release_notes_2613.txt
Downloads_http://www.snort.org/dl/current/snort-2.6.1.3.tar.gz
Автор: ЭЖД 4.05.2007 - 12:31
Snort 2.6.1.4Downloads_http://www.snort.org/dl/current/snort-2.6.1.4.tar.gz
Автор: ЭЖД 7.08.2007 - 14:01
snort 2.7.0.1Downloads_http://www.snort.org/dl/current/snort-2.7.0.1.tar.gz
Автор: ЭЖД 3.10.2007 - 12:02
Snort 2.8.0.0Feature highlights:
* Port lists
* IPv6 support
* Packet performance monitoring
* Experimental support for target-based stream and IP frag reassembly
* Ability to take actions on preprocessor events
* Detection for TCP session hijacking based on MAC address
* Unified2 output plugin
* Improved performance and detection capabilities
Downloads_http://www.snort.org/dl/current/snort-2.8.0.tar.gz
Автор: ЭЖД 2.12.2007 - 14:59
Snort 2.8.0.1Snort 2.8.0.1:
* Updates PCRE libraries used in Windows builds
* Fixes an issue with Stream5 debugging
* Corrects a calculation in perfmonitor
Downloads_http://www.snort.org/dl/current/snort-2.8.0.1.tar.gz
Автор: de1ay 18.03.2008 - 14:32
Snort 2.8.0.2
Release notes:
_http://www.snort.org/docs/release_notes/release_notes_2802.txt
Скачать:
http://www.snort.org/dl/current/snort-2.8.0.2.tar.gz
Автор: ЭЖД 4.04.2008 - 10:25
Snort 2.8.1Downloads (~4.2 Mb)_http://www.snort.org/dl/current/snort-2.8.1.tar.gz
Автор: ЭЖД 18.06.2008 - 14:59
snort 2.8.2.1New rules:
13844 <-> SPECIFIC-THREATS BDAT size longer than contents exploit attempt (specific-threats.rules)
13845 <-> SPECIFIC-THREATS BDAT size public exploit attempt (specific-threats.rules)
13846 <-> SPECIFIC-THREATS Veritas Backup Agent password overflow attempt (specific-threats.rules)
Updated rules:
3599 <-> NETBIOS DCERPC NCADG-IP-UDP mqqm QMDeleteObject little endian object call overflow attempt (netbios.rules)
12279 <-> WEB-CLIENT Microsoft XML substringData integer overflow attempt (web-client.rules)
13620 <-> SPECIFIC-THREATS CA Brightstor discovery service alternate buffer overflow attempt (specific-threats.rules)
13817 <-> SPECIFIC-THREATS xmlrpc.php command injection attempt (specific-threats.rules)
13818 <-> SPECIFIC-THREATS alternate xmlrpc.php command injection attempt (specific-threats.rules)
Downloads (~4,2 Mb)_http://www.snort.org/dl/current/snort-2.8.2.1.tar.gz
Автор: ЭЖД 2.08.2008 - 9:21
snort 2.8.2.22008-07-24 - Snort 2.8.2.2
[*] Improvements
* Fix issue with evaluating PCRE rule options with /U modifier that
are followed by a relative content rule option.
* Fix issue with dsize range check.
2008-06-12 - Snort 2.8.2.1
[*] Improvements
* Fix support for pass rules that sometimes did not take precedence
over alert and/or drop rules.
2008-05-28 - Snort 2.8.2
[*] New Additions
* Performance improvements in fast pattern matcher CPU caching and rules
processing for common rule options.
Downloads (~4,2 Mb)_http://www.snort.org/dl/current/snort-2.8.2.2.tar.gz
Автор: ЭЖД 6.09.2008 - 8:42
snort 2.8.3New Additions
* New Feature for HTTP Inspect to split requests into 5 components -
Method, URI, Header (non-cookie), Cookies, Body. Added HTTP server
specific configurations to normalize HTTP header and/or cookie buffers.
Provided content and PCRE modifiers to allow searches within one or
more of those individual buffers. Added content modifier to allow rule
writer to specify content to be used for fast pattern matcher.
Updated dynamic rule API to allow searches within the new buffers.
* Support for MPLS decoding.
* New option to rule and preprocessor profiling configuration for
logging to file instead of syslog.
Improvements
* Update to fix compilation issue on HPUX machines related to rule and
preprocessor performance profiling.
* Update to correct the wording of IP datagram length being greater than
the captured length decoder alert.
* Update to correct logging issue when using 'ruletype' keyword.
Downloads (~4,2 Mb)_http://www.snort.org/dl/snort-2.8.3.tar.gz
Автор: ЭЖД 2.10.2008 - 13:39
snort 2.8.3.1Downloads (~4,2 Mb)_http://www.snort.org/dl/snort-2.8.3.1.tar.gz