Snort is a powerful network intrusion prevention system, capable of performing real-time traffic analysis and packet logging on IP networks.
Combining the benefits of signature, protocol, and anomaly-based inspection, Snort is the most widely deployed IDS/IPS technology worldwide. With millions of downloads and nearly 400,000 registered users, Snort has become the de facto standard for IPS.
Requirements:
· Winpcap 4.1.1
What's New in This Release: [ read full changelog ]
· Update to GTP preprocessor to better handle GTPv1 data.
· Update to DNP3 preprocessor to add stricter checking on packets before processing by dnp3. Improved checking on reassembly buffer
· Update to PCRE rule option processing to prevent issues seen w/ libpcre-8.30 and certain rules.
· Update to dcerpc2 to not abort reassembly if target-based protocol is undefined.
Find us on Google+
