Snort 2.9.4.1

Developer: License / Price: Last Updated: Category: Sourcefire, Inc. | More programs GPL / FREE March 5th, 2013, 11:58 GMT [view history] ROOT / Security

Snort project is an open source intrusion detection software that can be configured in four modes:

- Sniffer mode;
- Packet Logger mode;
- Network Intrusion Detection System (NIDS) mode;
- Inline Mode.

Snort isn't very hard to use, but there are a lot of command-line options to play with.


Product's homepage

What's New in This Release: [ read full changelog ]

· Updated File processing for partial HTTP content and MIME attachments.
· Addition of new config option max_attribute_services_per_host and improve memory usage within attribute table.
· Handle excessive overlaps in frag3.
· Stream API updates to return session key for a session.
· Reduce false positives for TCP window slam events.
· Updates to provide better encoding for TCP packets generated for respond and react.
· Disable non-ethernet decoders by default for performance reasons. If needed, use --enable-non-ether-decoders with configure.

Via: Snort 2.9.4.1