![[+]d'ZheNwaY's Blog[+]](http://feeds.feedburner.com/blogspot/YRtWp.1.gif)
Smooth-Sec is a ready to-go IDS/IPS (Intrusion Detection/Prevention System) linux distribution based on the multi threaded Suricata IDS/IPS engine and Snorby, the top notch web application for network security monitoring. Smooth-Sec is built on Ubuntu 10.04 LTS using the TurnKey Core base as development platform. Functionality is the key point that allow to deploy a complete IDS/IPS System up and running out of the box within a few minutes, even for security beginners with minimal Linux experience. Feedback and suggestions are welcome on this page.
This project is not intended in any way to compete with Snorby and is team. Is my wish to maintain the cooperation that we had in the past months with the the exciting work on SnorbySPA. It is also my wish to cooperate with the Suricata team in the next developments.
Wiki: https://sourceforge.net/apps/mediawiki/smoothsec
Download: SmoothSec-1.2.iso
Size Compressed: 623 MB
Snorby login:Snorby interface: https://ipaddress
Username: snorby@snorby.org
Password: snorby (please change this password after the firts login)
Ssh login:
Username: root
Password: the password you have chose during the installation
Credits:
Smooth-Sec is developed by Phillip Bailey.
Snorby is developed by Dustin Webber .
Suricata is developed by open infosec foundation.
Turnkey-Linux is developed by www.turnkeylinux.org
License: GPLv3
Snorby Features:
Metrics Metrics & Reports
Classifications
Full packet and session data.
Settings Custom Settings
Hotkeys
Native IPv6 Support
Automatic protocol detection
Multi threaded
Native hardware acceleration support
Passive OS and Portscan detection
L7 Protocol awareness
IP Reputation using scoring threshold
Distributed blocking & feedback
Global flowbits and variables
Changelog
[*] Improvements and fixes
*Upgraded to Kernel 2.6.32-33-generic-pae with support up to 64GB RAM
*Snorby upgraded to 2.3.9 version
*Suricata upgraded to 1.1 Beta2 version
*Barnyard2 upgraded to 1.10 version
21-03-2011 – Smooth-Sec 1.1 Released
[*] Improvements and fixes
*Fixed suricata bug on alert classification.
*Fixed apt-get directories missing.
*Barnyard output files to suricata conventional naming.
*Timezone selection on firstboot.
*Autostart Snorby worker on boot.
*Delete all the events script added in /root/script.utils/
*Transparent bridge support script /etc/init.d/bridge
*Suricata user added to run the engine as unprivileged user
nb : bailey
Tidak ada komentar:
Posting Komentar