SmoothSec 3.2

Today we are proud to announce the release of SmoothSec Version 3.2. This version enhances the usability and performances of the whole IDS system. Along with the upgrade of Snort, Suricata and Pigsty, we are delighted to introduce Sagan HIDS (Host Instruction Detection System) to work in conjunction with Arpwatch as Address Resolution Protocol anomalies detection engine. We would like to highlight the improvement of “smoothsec.first.setup” with the network interfaces detection and Snorby custom login credentials. We have also added a comprehensive set of tools to perform traffic and packet analysis from the command line (e.g. greppcap.py, tcpextract).

Download: https://sourceforge.net/projects/smoothsec/files/SmoothSec-3.2

SmoothSec documentation wiki: https://github.com/smoothsec/docs/wiki

Community support: http://www.smoothsec.org/community

Changelog

26-08-2013 SmoothSec 3.2 released

[*] Improvements and fixes
Snorby email reports fixed.
Pigsty stability and performances improved.
Pigsty logs archving.

[*] Upgrades
Snort Version 2.9.5.3
Suricata version 1.4.5
MariaDB 5.5.32
Pigsty Version 0.1.5

[*] New tools
Arpwatch
Sagan
tcpxtract
ngrep
nast
ipgrab
tshark
justniffer
python-impacket
python idstools
python tcpextract
greppcap.py
percona-toolkit‎
percona-xtrabackup

Posted in Uncategorized
0 comments on “SmoothSec 3.2
3 Pings/Trackbacks for "SmoothSec 3.2"
  1. […] This version enhances the usability and performances of the whole IDS system. Along with the upgrade of Snort, Suricata and Pigsty, we are delighted to introduce Sagan HIDS (Host Instruction Detection System) to work in conjunction with Arpwatch as Address Resolution Protocol anomalies detection engine.  […]

  2. […] Увидел свет релиз SmoothSec 3.2, дистрибутива на пакетной базе Debian GNU/Linux 7 «Wheezy», предоставляющего полностью готовое и преднастроенное окружение для развёртывания систем обнаружения и предотвращения атак. В состав включены такие приложения, как Snorby, Snort, Suricata, PulledPork и Pigsty. Настройка первичной конфигурации автоматизирована и предельно упрощена, что позволяет создавать системы IDS/IPS даже начинающими администраторами. Сборки дистрибутива подготовлены для архитектур i386 (789 Мб) и amd64 (714 Мб). […]