Wednesday, April 23, 2014

Snort 2.9.6.1 is now available!

Snort 2.9.6.1 is now available on snort.org, at
https://www.snort.org/downloads in the Development section.

Snort 2.9.6.1 includes changes for the following:

2014-04-22 - Snort 2.9.6.1
[*] Improvements
* Added a control command to dump all packets matching a BPF to a pcap
   file for capturing specific traffic for further analysis.

* Address issue for encoded packets and icmp header length determination.

* Provide more detailed error output for parsing of invalid rules when
   byte_test, byte_check, content, and isdataat use a byte_extract value.

* Updated sensitive data to better address partial matches between packets.

See the Release Notes and ChangeLog for more details.

Please submit bugs, questions, and feedback to bugs@snort.org.

Happy Snorting!
The Snort Release Team