.:[ packet storm ]:.
                               
trust nothing
trust nothing

 Section:  .. / sniffers / snort  /

Snort is an excellent intrusion detection system and packet sniffer for many unix platforms. Homepage is http://www.clark.net/~roesch/security.html

Page 8 of 10
<< 1 2 3 4 5 6 7 8 9 10 >> Files 175 - 200 of 235
Currently sorted by: File SizeSort By: File Name, Last Modified

 ///  File Name: oinkmaster-0.8.tar.gz
Description:
 Oinkmaster is simple Perl script released under the BSD license to help update and manage Snort 2.0+ rules and to comment out the unwanted ones after each update. It will report what has changed since the last update, offering good change control.
Author:Andreas Oestling
Homepage:http://nitzer.dhs.org/oinkmaster/
File Size:31725
Last Modified:Sep 3 23:28:07 2003
MD5 Checksum:e888fb4d76c78c16e205984675fea78f

 ///  File Name: placid-2.0.7.tar.gz
Description:
 Placid is a Web-based frontend for Snort that uses MySQL. It supports searching, sorting, and graphing of events, and was designed for speed and to have little overhead.
Author:Phillip Deneault
Homepage:http://speakeasy.wpi.edu/placid/
Changes:Bug fixes. Minor additions and changes.
File Size:29839
Last Modified:Jun 1 03:51:33 2005
MD5 Checksum:4d6a2269375a13a1ea7bcb6703e7d701

 ///  File Name: placid-2.1.tar.gz
Description:
 Placid is a Web-based frontend for Snort that uses MySQL. It supports searching, sorting, and graphing of events, and was designed for speed and to have little overhead.
Author:Phillip Deneault
Homepage:http://speakeasy.wpi.edu/placid/
Changes:Bug fixes, Fixed start/end time problems when searching, Added http refresh to UI, Added returned row count to search summary screen, and more.
File Size:29412
Last Modified:Jan 15 12:35:06 2006
MD5 Checksum:b1a34da0a60a88624812efff71cddb7e

 ///  File Name: 06082kbackdoor.rules
Description:
 Updated snort rules to detect backdoors last updated 06/08/2000.
Author:Jim Forster
Homepage:http://www.snort.org
File Size:28871
Last Modified:Jul 12 14:15:18 2000
MD5 Checksum:2f08eb36838d03749fffaa0b1444011a

 ///  File Name: backdoor.rules
Description:
 300 snort rules to detect windows backdoors.
Homepage:http://snort.rapidnet.com/
File Size:28531
Last Modified:Mar 29 16:04:00 2000
MD5 Checksum:a492cdf4bdd3109aaba4bf7d8fd36591

 ///  File Name: placid-2.0.5.tar.gz
Description:
 Placid is a Web-based frontend for Snort that uses MySQL. It supports searching, sorting, and graphing of events, and was designed for speed and to have little overhead.
Author:Phillip Deneault
Homepage:http://speakeasy.wpi.edu/placid/
Changes:Bug fixes. Minor additions and changes.
File Size:28022
Last Modified:Dec 11 15:15:55 2004
MD5 Checksum:a3653eec44cd2c539a0c979f13f2113f

 ///  File Name: vision.conf
Description:
 Snort rules from the arachNIDS IDS signature database. Last updated 1/25/2000.
Author:Max Vision
Homepage:http://whitehats.com/ids/
File Size:27206
Last Modified:Jan 25 21:08:56 2000
MD5 Checksum:36f5ccc05b3b0b089f8d738e225cf0cd

 ///  File Name: 5n0r7.c
Description:
 5n0r7 is a snort alert file parser. It sorts the alerts based on source IP, destination IP, and frequency. 5n0r7 allows one to detect attacks (portscans, probes, or whatever snort is configured to alert) right away when displaying the sorted alert file.
Author:Michel Kaempf
Homepage:ftp://snort.via.ecp.fr
File Size:26652
Last Modified:Apr 21 22:08:53 2000
MD5 Checksum:1b0e307dff6afb9a5952345816f1dac3

 ///  File Name: placid-2.0.3.tar.gz
Description:
 Placid is a Web-based frontend for Snort that uses MySQL. It supports searching, sorting, and graphing of events, and was designed for speed and to have little overhead.
Author:Phillip Deneault
Homepage:http://speakeasy.wpi.edu/placid/
Changes:Bug fixes. Minor additions and changes.
File Size:23673
Last Modified:Sep 15 01:07:28 2004
MD5 Checksum:d1d9567937ae2c8b4c21c0d14c504006

 ///  File Name: placid-2.0.2.tar.gz
Description:
 Placid is a Web-based frontend for Snort that uses MySQL. It supports searching, sorting, and graphing of events, and was designed for speed and to have little overhead.
Author:Phillip Deneault
Homepage:http://speakeasy.wpi.edu/placid/
File Size:23641
Last Modified:Jun 18 00:31:12 2004
MD5 Checksum:7772b3d934d1fb3570c05d335ede895d

 ///  File Name: sigof-0.9-rc1.tar.bz2
Description:
 SIGOF (Security Information Graphics Oriented Forensic) has been developed as a complement to the ACID or BASE project by implementing useful and detailed graphical presentation of security information/events. This program can exploit any security information stored in an ACID/BASE database schema. SIGOF introduces another way to manage security forensics and analysis by providing graphical representation of statistical and security trends. This approach provides the ability to manage a large amount of security events.
Author:krisstoffe
Homepage:http://sigof.sourceforge.net/
File Size:21621
Last Modified:Apr 29 06:49:24 2006
MD5 Checksum:10dcd8e1901d4a034db1b6e840a6a852

 ///  File Name: Guardian.tar
Description:
 Guardian watches the output from Snort, a lightweight intrustion detection system, and uses ipchains to deny any further packets from the attacker to get to the system.
Author:Anthony Stevens
Homepage:http://www.clark.net/~roesch/security.html
File Size:20480
Last Modified:Mar 1 16:06:33 2000
MD5 Checksum:ba8f89a0580e09f73cb8cbe004344863

 ///  File Name: snort-rep-1.8.tar.gz
Description:
 Snort-rep is a Snort reporting tool that can produce text or HTML output from a syslog snort log file. It is intended to be used for daily e-mail reports to the system administrators. If snort v1.8+ is used, all reports contain priority information, and the HTML output contains direct links to the IDS descriptions of whitehats.com.
Homepage:http://people.ee.ethz.ch/~dws/software/snort-rep
Changes:The syslog parser was updated - This version is compatible with snort 1.8.3.
File Size:19902
Last Modified:Feb 19 02:26:31 2002
MD5 Checksum:73e746580d3225a2f577b5b7da27a32a

 ///  File Name: snort-rep-1.7.tar.gz
Description:
 Snort-rep is a Snort reporting tool that can produce text or HTML output from a syslog snort log file. It is intended to be used for daily e-mail reports to the system administrators. If snort v1.8+ is used, all reports contain priority information, and the HTML output contains direct links to the IDS descriptions of whitehats.com.
Homepage:http://people.ee.ethz.ch/~dws/software/snort-rep
Changes:Now compatible with Snort 1.8.1-RELEASE.
File Size:19362
Last Modified:Nov 9 01:08:20 2001
MD5 Checksum:1da573498a34e4c5333b0a8ecffbba5c

 ///  File Name: snort-rep-1.6.tar.gz
Description:
 Snort-rep is a Snort reporting tool that can produce text or HTML output from a syslog snort log file. It is intended to be used for daily e-mail reports to the system administrators. If snort v1.8+ is used, all reports contain priority information, and the HTML output contains direct links to the IDS descriptions of whitehats.com.
Homepage:http://people.ee.ethz.ch/~dws/software/snort-rep
Changes:Improved parsing of fast-logs.
File Size:19181
Last Modified:Sep 5 02:07:37 2001
MD5 Checksum:c346214ce1ed255ec0dc902fb9bb6566

 ///  File Name: snort-rep-1.5.tar.gz
Description:
 Snort-rep is a Snort reporting tool that can produce text or HTML output from a syslog snort log file. It is intended to be used for daily e-mail reports to the system administrators. If snort v1.8+ is used, all reports contain priority information, and the HTML output contains direct links to the IDS descriptions of whitehats.com.
Homepage:http://people.ee.ethz.ch/~dws/software/snort-rep
Changes:Embedded Parse::Syslog module for easier installation. Now uses Text::FormatTable for nice text reports. Added --text-width and --narrow options.
File Size:19047
Last Modified:Aug 25 02:24:38 2001
MD5 Checksum:4ad789f8a4d15a388f205c789c527fe7

 ///  File Name: pgsql_php3
Description:
 This is a php script which goes to the database (Postgresql) and generate some statistics from the data. For more info see this snortdb page.
Author:Yen-Ming Chen
Homepage:http://xanadu.incident.org
File Size:18924
Last Modified:Nov 14 16:39:30 2000
MD5 Checksum:60b87f3b1313543c52c6070d66a776fa

 ///  File Name: covertsession-0.4.c
Description:
 covertsession is a command line tool that allows you to create a TCP session that IDS sensors cannot parse correctly. What this tool lets you do is inject bytes into your outbound data stream that an IDS sensor will treat as part of the data stream but the remote OS will ignore. If used correctly it can cause a signature not to match. This tool provides command line options to control how bytes are injected. It can use a file as its source of input. Or it can listen on a local port, redirecting the TCP session covertly to an IP:Port specified on the command line. Tested against Snort 2.2.
Author:Javier G. Sanchez
File Size:18879
Last Modified:Mar 15 01:33:53 2005
MD5 Checksum:aaab53e9865995b9550806ece94557d1

 ///  File Name: snort_stat.pl
Description:
 snort_stat.pl v1.14 (Feb 2001) does statistical analysis on snort logfiles. It's setup to process the syslog alerts that Snort creates and generate a bunch of relavent statistics about the current alerts. If you read the beginning of the script, it tells you how to activate the program as a cron job to provide daily reports of activity recorded by Snort.
Author:Yen-Ming Chen
File Size:18461
Last Modified:Feb 14 02:48:21 2001
MD5 Checksum:be0cbb81a6359378179761be68522a2a

 ///  File Name: snort2pf-4.3.tar.gz
Description:
 Snort2Pf is a small Perl daemon which greps Snort's alertfile and blocks the bad hosts for a given amount of time using pfctl.
Author:Stephan Schmieder
Homepage:http://bsd-security.org/~ssc/codedocs/snort2pf/
Changes:Added the -t option to use a table instead of an anchor. Improved manpages.
File Size:17486
Last Modified:Nov 30 00:45:18 2007
MD5 Checksum:911f9a894f70d80898bb4210f2f2b892

 ///  File Name: incident-1.2.tar.gz
Description:
 incident.pl is a small script that, when given logs generated by snort, can generate an incident report for every event that appears to be an attempted security attack, and report the attack to the appropriate administrators.
Homepage:http://www.cse.fau.edu/~valankar/
Changes:The recipients of reports are now logged in a file. Non-standard characters were removed from email addresses.
File Size:17315
Last Modified:Apr 6 19:10:48 2001
MD5 Checksum:54aecdf77f19f64604ba822a834d1f6a

 ///  File Name: snortrt_stat.pl
Description:
 Unavailable.
File Size:16876
Last Modified:Nov 22 18:17:45 2000
MD5 Checksum:d28f5879352e5968d577aa3baf2469b5

 ///  File Name: iamdohv1.tgz
Description:
 i-am-doh is a utility that filters approximately 75% of all false-positives given by an IDS. It uses existing reliable tools like Nmap, Nessus, and Amap to validate IDS alerts based on the following criteria and techniques: OS identification, service identification, port scanning, vulnerability scanning, online CVE and bug interpretation, and server importance weighting.
Author:Mark Osborne
File Size:16209
Last Modified:Dec 23 04:33:36 2003
MD5 Checksum:e678dc630586ec0cbf1e183c4318ac35

 ///  File Name: incident-1.1.tar.gz
Description:
 incident.pl is a small script that, when given logs generated by snort, can generate an incident report for every event that appears to be an attempted security attack, and report the attack to the appropriate administrators.
Homepage:http://www.cse.fau.edu/~valankar/
Changes:The recipients of reports are now logged in a file. Non-standard characters were removed from email addresses.
File Size:16199
Last Modified:Mar 21 15:36:24 2001
MD5 Checksum:9e2aaf2b4ba1a9638beda62d0a8fbdba

 ///  File Name: incident-1.0.tar.gz
Description:
 incident.pl is a small script that, when given logs generated by snort, can generate an incident report for every event that appears to be an attempted security attack, and report the attack to the appropriate administrators.
Homepage:http://www.cse.fau.edu/~valankar/
File Size:15958
Last Modified:Mar 4 22:56:02 2001
MD5 Checksum:e24f92b903343b7b9e81dbd61538787f
 

 ///  Last 10 Files
  1. :· dsa-1668-1.txt
  2. :· wireshark104-dos.txt
  3. :· ksplice-0.9.4-src.tar.gz
  4. :· MDVSA-2008-235.txt
  5. :· cambridge-sql.txt
  6. :· verlihub-exec.txt
  7. :· DDIVRT-2008-15.txt
  8. :· openssh-cbc-adv.txt
  9. :· joomlathyme-sql.txt
  10. :· BitDefenderDOS.zip
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· dsa-1668-1.txt
  2. :· wireshark104-dos.txt
  3. :· MDVSA-2008-235.txt
  4. :· DDIVRT-2008-15.txt
  5. :· openssh-cbc-adv.txt
  6. :· ZDI-08-076.txt
  7. :· ZDI-08-075.txt
  8. :· MDVSA-2008-233.txt
  9. :· SSRT080059.txt
  10. :· MDVSA-2008-220-1.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· cambridge-sql.txt
  2. :· verlihub-exec.txt
  3. :· joomlathyme-sql.txt
  4. :· BitDefenderDOS.zip
  5. :· kvirc-exec.txt
  6. :· vcalendar-disclose.txt
  7. :· toursmanager-blindsql.txt
  8. :· phprsgal-sql.txt
  9. :· natterchat-sql.txt
  10. :· php526-bypass.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· ksplice-0.9.4-src.tar.gz
  2. :· fwknop-1.9.9.tar.gz
  3. :· pysumpas-0.2.0.tar.gz
  4. :· framework-3.2.tar.gz
  5. :· tor.uclibc.i686.20081115.iso
  6. :· RFIDIOt-Windows-0.1u.zip
  7. :· RFIDIOt-0.1u.tgz
  8. :· dps-v1.5.tar.gz
  9. :· smbrelay3.zip
  10. :· mptrey.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· java2-malware.pdf
  2. :· return-to-libc-linux.txt
  3. :· stack-overflow-linux.txt
  4. :· smallest_setuid_execve_sc.c
  5. :· sudoers-shellcode.txt
  6. :· strongswan-4.2.9.tar.gz
  7. :· hodetector-shellcode.txt
  8. :· rtm-essential5.pdf
  9. :· unixasm-1.3.0.tar.gz
  10. :· bnd-networks.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice