Snort Rules

Snort::Rule is a Perl extension for dynamically building snort rules. SYNOPSIS use Snort::Rule; $rule = Snort::Rule->new( -action => alert, -proto => tcp, -src => any, -sport => any, -dir => ->, -dst => 192.188.1.1, -dport => 44444, ); $rule->opts(msg,Test Rule");...

fwsnort parses the rules files included in the snort intrusion detection system and builds an equivalent iptables ruleset for as many rules as possible. fwsnort accepts command line arguments to restrict processing to any particular class of snort rules such as "ddos", "backdoor", or...

Snort project is a "lightweight" intrusion detection technology in comparison to commercially available systems. Snort really isnt very hard to use, but there are a lot of command line options to play with, and its not always obvious which ones go together well. This file aims to make using...


Platforms: *nix

Snort_inline is a modified version of Snort. It accepts packets from iptables, instead of libpcap. It uses new rule types to tell iptables if the packet should be dropped or allowed to pass based on the Snort rules.


Platforms: *nix

Spoink is an output-plugin for snort that works by blocking access to attackers using OpenBSDs pf api. All you need is an OpenBSD machine (or pf compatible), and snort (last version works well). Spoink uses a pf table and a blocking rule to stop "attackers" accessing our system. To protect...


Platforms: *nix

Analyse your web server log files showing possible intrusion attempts, compatible with SNORT rule files. Network Security Administrators will agree that manually scanning web server logs for intrusion attempts is time consuming and not a loved task, not to mention small details that can so...


Platforms: Windows

psad is a collection of three lightweight system daemons (two main daemons and one helper daemon) that run on Linux machines and analyze Netfilter log messages to detect port scans and other suspicious traffic. psad incorporates many signatures from the Snort intrusion detection system to...


Platforms: *nix

SnortCenter is a web-based client-server management system written in PHP and Perl. It will help you to configure Snort and keep the signatures up-to-date.The Management Console will build the configuration files for you and then send it to the remote sensor.- Some features: SSL encryption...


Platforms: PHP

This search add-ons allows you to search for Snort IDS rules on the snort.org website.


Platforms: *nix

MAPILab Rules for Exchange is a program for creating and managing Microsoft Exchange Server and Small Business Server 2000/2003 server rules for processing incoming messages. The product provides much more flexibility and functionality than server rules created in Microsoft Outlook, supports all...


Platforms: Windows

File Rules replaces traditional hierarchical tree structures normally used to organize and categorize files. By the use of keywords you can store and retrieve important files and documents. There are many disadvantages when using current file managers based on tree structures, you may: forget the...


Platforms: Windows

Snort Config provides an intuitive menu-based interface for the GPL IDS tool Snort. SnortConf is a tool that provides a fairly intuitive menu-based text interface for setting up the GPL IDS tool Snort. It also provides error and sanity checking on user input, and an online help facility....


Platforms: *nix

Snort Report is an add-on module for the Snort Intrusion Detection System. Snort Report add-on provides realtime reporting from the MySQL database generated by Snort. It has been tested on Redhat 6.2, 7.0, 7.1, and OpenBSD 2.9.. Symmetrix Technologies is a complete network integrator and...


Platforms: *nix

FSA::Rules is a Perl module to build simple rules-based state machines in Perl. Synopsis my $fsa = FSA::Rules->new( ping => { do => sub { print "ping!n"; my $state = shift; $state->result(pong); $state->machine->{count}++; }, rules => [ game_over => sub { shift->machine->{count} >=...


Platforms: *nix

Fast Logging Project for Snort is designed to gather alerts with payload from distributed snort sensors on a central server and to store them in a database (MySQL and PostgreSQL are supported). On the sensor, the output is written to a process called sockserv. This process is threaded; one...


Platforms: *nix

XML::Rules is a Perl module that can parse XML & process tags by rules starting from leaves. SYNOPSIS use XML::Rules; $xml = < < *END* < doc > < person > < fname >...< /fname > < lname >...< /lname > < email >...< /email > < address > < street >...< /street > < city >...< /city > <...


Platforms: *nix

Lingua::Phonology::Rules is a Perl module for defining and applying phonological rules. SYNOPSIS use Lingua::Phonology; $phono = new Lingua::Phonology; $rules = $phono->rules; # Adding and manipulating rules is discussed in the "WRITING RULES" # section This module allows for the...


Platforms: *nix

CodeTwo Exchange Rules Pro is a powerful email management software for Microsoft Exchange Server. It allows administrators to easily set server-sided rules for automatic email flow management and email content control on Microsoft Exchange. Its features are: email forwarding, email filtering,...


Platforms: Windows, Other

Create and to modify the Rules of the forum, checks how many users have read the rule from the last change and in case it is possible to warn them with a Private Message.


Platforms: Windows, *nix, PHP, BSD

Snort Log Monitor and Ticketing System, a PHP based log monitoring and ticketing system for Snort IDS logging to a mySQL database.


Platforms: PHP