Snort mailing list archives
Aanval 5.5 (Snort & Syslog intrusion and correlation) released
From: RA Operations <operations () remoteassessment com>
Date: Wed, 31 Mar 2010 10:10:10 -0700
All; ----------------------------------------------------------------------------- Aanval 5.5 is now available ----------------------------------------------------------------------------- We are very pleased this morning to announce the public, immediate availability of Aanval 5.5. Aanval is the industry's leading web-based gui for snort and syslog intrusion detection and correlation. Government security and defense organizations from more than a half dozen countries, educational institutions from around the world, global financial organizations as well as space exploration and military weapons manufacturers rely upon Aanval as a part of their security infrastructure. Remember, Aanval is available as a free, single sensor version (without licenses, Aanval supports a single Snort and Syslog sensor). ----------------------------------------------------------------------------- Aanval Details & Screenshots ----------------------------------------------------------------------------- Screenshots http://www.aanval.com/aanval/ Below is a list of some of the changes that we've made in v5.5: : An all new look and feel : New Collection Group Manager : New Notes System : New syslog filter management system : New port.map added to /conf/maps/ : Added payload: keyword to string match against payload data : Added snort rule reload command option for sensor management tools : Added ability to add events to a collection group through automated actions : Added ability to delete syslog sensors : Added underpinnings for several to be announced features : Updated syslog filter assignment system : Updated window manager stability : Updated window manager window placement : Removed shrinking window feature : Extended free limited auto-logout to 30 minutes : Removed all AMF, migrated back to XML : Login banner text is configurable via idsOps database table : PHP compatibility updates : Flex SDK updates : Fixed dozens of bugs with the full removal of AMF : Fixed regular expression bug when filter contains special characters : Fixed live monitor hostname timeout issue : Fixed event details hostname timeout issue : Fixed datastore rotation by day bug, which prevented correct rotation : Fixed various html and special character data transmission bugs : Fixed new user accounts randomly not being able to see event data : Fixed syslog license error bug ... and much, much more is on the way as we finalize great features like the following: New Situational Awareness display New Signature Management New Signature Editor New Event Browser New Event Correlation Event Tracking and Marking Incident and Event Response Signature Correlation ----------------------------------------------------------------------------- New Aanval Appliances ----------------------------------------------------------------------------- We have brought the industry's #1 Snort & Syslog intrusion detection and correlation console together with the worlds most stable and advanced operating system. Aanval Appliances are available in a variety of hardware and software combinations to fit every environment. Single sensor deployments to large-scale enterprise intrusion arrays, Aanval Appliances are pre-configured for full intrusion detection and correlation functionality out-of-the-box. http://www.aanval.com/appliances/ <>-<> Aanval Intrusion Detection and Correlation Online @ Aanval dot Com Interesting Fact: Aanval is owned and operated by Tactical FLEX Fon: 800.921.2584 Fax: 501.648.0875 "Information Security Vulnerability and Risk Management Solutions"
------------------------------------------------------------------------------ Download Intel® Parallel Studio Eval Try the new software tools for yourself. Speed compiling, find bugs proactively, and fine-tune applications for parallel performance. See why Intel Parallel Studio got high marks during beta. http://p.sf.net/sfu/intel-sw-dev
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Aanval 5.5 (Snort & Syslog intrusion and correlation) released RA Operations (Mar 31)