Friday, May 27, 2016

Snort++ Update

Pushed build 198 to github (snortadmin/snort3):

  • add double-decoding to new_http_inspect
  • add obfuscation support for cmg and unified2
  • cleanup compiler warnings and memory leaks
  • fixup cmake builds
  • update file processing configuration
  • prevent profiler double counting on recursion
  • additional unit tests for high availability
  • fix multi-DAQ instance configuration

Thursday, May 26, 2016

Snort Subscriber Rule Set Update for 05/26/2016

Just released:
Snort Subscriber Rule Set Update for 05/26/2016


We welcome the introduction of the newest rule release from Talos. In this release we introduced 16 new rules and made modifications to 3 additional rules.

There were no changes made to the snort.conf in this release.

Talos would like to thank the following individuals for their contributions, their rules are included in the Community Ruleset:

Yaser Mansour
39064


Talos's rule release:
Talos has added and modified multiple rules in the blacklist, browser-plugins, file-other, file-pdf, malware-backdoor, malware-cnc, malware-other and server-webapp rule sets to provide coverage for emerging threats from these technologies.


In order to subscribe now to Talos's newest rule detection functionality, you can subscribe for as low as $29 US dollars a year for personal users, be sure and see our business pricing as well at https://www.snort.org/products. Make sure and stay up to date to catch the most emerging threats!

Wednesday, May 25, 2016

2016 Snort Scholarship Winners!

Columbia, MD – May 25, 2016 – Snort® today announced that it has selected Max Harley and Scott Hight  as the recipients of the 2016 Snort Scholarship. The scholarships, each worth $5,000, are awarded to university students around the world that use Snort to further their education and gain hands-on experience in network security.

To qualify, applicants must be enrolled in a university that uses Snort to protect its network or uses Snort as part of the curriculum in the classroom. The scholarships assist the winning students in completing their degrees and covering educational costs. Snort selected Max and Scott from a pool of Snort Scholarship applicants.

Max Harley is pursuing a Bachelors of Science in Computer Science at the College of Charleston and will be continuing his studies at Clemson University this upcoming fall.  

Scott Hight is pursing a Masters of Science in Cyber Security at Liberty University.

To assist the winning students in completing their degrees, Sourcefire has awarded each a $5,000 scholarship for educational costs at the students’ respective universities. 

Sourcefire, now a part of Cisco, developed the Snort Scholarship in 2004 as a way to give back to the open source and security communities. Since the inception of the Snort Scholarship program seven years ago, Sourcefire has recognized university students from around the world, including the United States, Australia, Turkey, Mexico, the Netherlands and Rwanda. 

Snort is the world’s most widely deployed intrusion detection and prevention technology with more than 400,000 registered users and over 5 million downloads to date.

Congratulations to our winners!

Tuesday, May 24, 2016

Snort Subscriber Rule Set Update for 05/24/2016

Just released:
Snort Subscriber Rule Set Update for 05/24/2016


We welcome the introduction of the newest rule release from Talos. In this release we introduced 88 new rules and made modifications to 15 additional rules.

There were no changes made to the snort.conf in this release.

Talos would like to thank the following individuals for their contributions, their rules are included in the Community Ruleset:

James Lay
38993


Talos's rule release:
Talos has added and modified multiple rules in the blacklist, browser-plugins, exploit-kit, file-executable, file-flash, file-image, file-office, file-other, file-pdf, malware-cnc, malware-tools, server-other and sql rule sets to provide coverage for emerging threats from these technologies.


In order to subscribe now to Talos's newest rule detection functionality, you can subscribe for as low as $29 US dollars a year for personal users, be sure and see our business pricing as well at https://www.snort.org/products. Make sure and stay up to date to catch the most emerging threats!

Thursday, May 19, 2016

Snort Subscriber Rule Set Update for 05/19/2016

Just released:
Snort Subscriber Rule Set Update for 05/19/2016

We welcome the introduction of the newest rule release from Talos. In this release we introduced 17 new rules and made modifications to 6 additional rules.

There were no changes made to the snort.conf in this release.

Talos would like to thank the following individuals for their contributions, their rules are included in the Community Ruleset:

Yaser Mansour
38950
38951
38952
38953

Talos's rule release:
Talos has added and modified multiple rules in the blacklist, browser-ie, exploit-kit, file-flash, file-other, file-pdf, malware-cnc, malware-other, policy-other, pua-adware and server-webapp rule sets to provide coverage for emerging threats from these technologies.

In order to subscribe now to Talos's newest rule detection functionality, you can subscribe for as low as $29 US dollars a year for personal users, be sure and see our business pricing as well at https://www.snort.org/products. Make sure and stay up to date to catch the most emerging threats!

Tuesday, May 17, 2016

Snort Subscriber Rule Set Update for 05/17/2016

Just released:
Snort Subscriber Rule Set Update for 05/17/2016


We welcome the introduction of the newest rule release from Talos. In this release we introduced 85 new rules and made modifications to 23 additional rules.

There were no changes made to the snort.conf in this release.

Talos would like to thank the following individuals for their contributions, their rules are included in the Community Ruleset

Yaser Mansour
38886
38887
38888
38890
38891

Talos's rule release:
Talos has added and modified multiple rules in the browser-plugins, exploit-kit, file-flash, file-image, file-multimedia, file-office, file-other, file-pdf, indicator-compromise, indicator-obfuscation, malware-cnc, malware-other, os-windows and server-webapp rule sets to provide coverage for emerging threats from these technologies.


In order to subscribe now to Talos's newest rule detection functionality, you can subscribe for as low as $29 US dollars a year for personal users, be sure and see our business pricing as well at https://www.snort.org/products. Make sure and stay up to date to catch the most emerging threats!

Wednesday, May 11, 2016

Snort Subscriber Rule Set Update for 05/11/2016

Just released:
Snort Subscriber Rule Set Update for 05/11/2016


We welcome the introduction of the newest rule release from Talos. In this release we introduced 27 new rules and made modifications to 2 additional rules.

There were no changes made to the snort.conf in this release.



Talos's rule release:
Talos has added and modified multiple rules in the file-flash, file-identify, file-image, file-other, malware-cnc and server-other rule sets to provide coverage for emerging threats from these technologies.


In order to subscribe now to Talos's newest rule detection functionality, you can subscribe for as low as $29 US dollars a year for personal users, be sure and see our business pricing as well at https://www.snort.org/products. Make sure and stay up to date to catch the most emerging threats!