Tuesday, January 27, 2015

Snort++ Update

Just pushed to github (snortadmin/snort3):

  • sync Mpse to 297, add SearchTool
  • 297 sync for sfghash, sfxhash, tag, u2spewfoo, profiler and target based
  • addition of mime decoding stats and updates to mime detection limits
  • snort2lua changed to add bindings for default ports if not explicitly configured
  • added md5, sha256, and sha512 rule options based on Snort 2.X protected_content