13/09/11

smooth-sec IDS/IPS v1.2 released

Smooth-Sec is a ready to-go  IDS/IPS (Intrusion Detection/Prevention System) linux distribution based on the multi threaded Suricata IDS/IPS engine and Snorby, the top notch web application for network security monitoring. Smooth-Sec is built on Ubuntu 10.04 LTS using the TurnKey Core base as development platform. Functionality is the key point that allow to deploy a complete  IDS/IPS System up and running out of the box within a few minutes, even for security beginners with minimal Linux experience. Feedback and suggestions are welcome on this page.

This project is not intended in any way to compete with Snorby and is team. Is my wish to maintain the cooperation that we had in the past months with the  the exciting work on SnorbySPA. It is also my wish to cooperate with the Suricata team in the next developments. 


IRC #smooth-sec – irc.freenode.net

Wiki: https://sourceforge.net/apps/mediawiki/smoothsec


Size Compressed: 623 MB
Snorby login:
Snorby interface: https://ipaddress
Username: snorby@snorby.org
Password: snorby  (please change this password after the firts login)
Ssh login:
Username: root
Password: the password you have chose during the installation

Credits:

Smooth-Sec is developed by Phillip Bailey.
Snorby is developed by Dustin Webber .
Suricata is developed by open infosec foundation.
Turnkey-Linux is developed by www.turnkeylinux.org
License: GPLv3

Snorby Features:

Metrics Metrics & Reports
Classifications
Full packet and session data.
Settings Custom Settings
Hotkeys

Suricata Features:

Native IPv6 Support
Automatic protocol detection
Multi threaded
Native hardware acceleration support
Passive OS and Portscan detection
L7 Protocol awareness
IP Reputation using scoring threshold
Distributed blocking & feedback
Global flowbits  and variables
Changelog

7-09-2011 – Smooth-Sec 1.2 Released

[*] Improvements and fixes
*Upgraded to Kernel 2.6.32-33-generic-pae with support up to 64GB RAM
*Snorby upgraded to 2.3.9 version
*Suricata upgraded to 1.1 Beta2 version
*Barnyard2 upgraded to 1.10 version

21-03-2011 – Smooth-Sec 1.1 Released

[*] Improvements and fixes
*Fixed suricata bug on alert classification.
*Fixed apt-get directories missing.
*Barnyard output files to suricata conventional naming.
*Timezone selection on firstboot.
*Autostart Snorby worker on boot.
*Delete all the events script added in /root/script.utils/
*Transparent bridge support script /etc/init.d/bridge
*Suricata user added to run the engine as unprivileged user

nb : bailey

Tidak ada komentar:

Posting Komentar