SuStorID – Alpha

SuStorID is an advanced Intrusion Detection System (IDS) for web services, based on machine learning. Its name comes from the term “Su Stori”, which in Sardinian language means “The Falcon”. It’s version is experimental, but demonstrates a number of interesting features, that can be readily exploited to detect and act against web attacks. SuStorID can be coupled with modsecurity, the well known web application firewall, to gather training data and provide for real-time counteractions. So, SuStorID is a host-based Intrusion Detection System, and by means of modsecurity can access internal web server’s data (i.e. http request/response fields) exactly as Apache does.

How to Installation :

Download Latest Version :

– SuStorID_alpha.zip (1.1 MB)

– modsecurity-apache_2.6.2_for_sustorid.zip

find other version |

read more in here : http://comsec.diee.unica.it/sustorid/

Advertisements

Security Union – Live 20120125.iso

Security Onion is a Linux distro for IDS (Intrusion Detection System) and NSM (Network Security Monitoring). It’s based on Xubuntu 10.04 and contains Snort, Suricata, Sguil, Squert, Xplico, tcpreplay, scapy, hping, and many other security tools.

Features

  • Our project web servers frequently handle more than 50M hits per day; we handle server scaling, load balancing, and performance tuning.
  • The project web platform has been standardized on CentOS 5.x Linux, running Apache 2.2.x.
  • Support for many programming languages, including PHP (via mod_php), Perl, Python, Tcl, Ruby, and shell scripts.
  • Support for several database platforms is provided, including MySQL (through our Project Database service), DBM, and SQLite.
  • Project web content may be uploaded using our File management service or be managed directly using our Shell service.
  • Each project is allocated the UNIXNAME.sourceforge.net VHOST (virtual host), which is used to serve their project web content.
  • Our servers will answer traffic for a domain you register, when configured as a custom VHOST.
  • Common web server features are provided, such as mod_rewrite, Server-Side Includes (SSI), HTTP Basic Auth, and custom error handler support.
  • Page views can be counted in the statistics system based on display of a project-specific SourceForge.net logo.
  • Additional web analytics are available using Piwik, part of our Hosted Apps offering.
  • Service usage is not restricted by quotas.
ChangeLog

Download Latest Version :  Download security-onion-live-20120125.iso (1.4 GB)

Read More In Here : http://security-onion.sourceforge.net/

Tripwire 2.4.2 released

   Tripwire 2.4.2 released

Tripwire is a very popular system integrity checker, a utility that compares properties of designated files and directories against information stored in a previously generated database. Any changes to these files are flagged and logged, including those that were added or deleted, with optional email and pager reporting. Support files (databases, reports, etc.) are cryptographically signed.
Changes:This release updates version revision in reports and all, adds experimental policy creation (see policy/policy_generator_readme.txt), fixes report formatting and sendmail issues, adds Debian patches for crypto and hostnames, fixes a compiling issue on recent GCC compilers (-fpermissive), and adds an experimental policy generator file which should become standard once it has been tested properly.

Download  : http://sourceforge.net