Solved

Snort, Etheral in a linux distribution system

Posted on 2007-04-01
6
1,703 Views
Last Modified: 2013-11-29
Besides SENTINIX (discontinued), is there an ACID or Snort + Etheral linux distribution system?

Thanks.
0
Comment
Question by:nakedconsulting
6 Comments
 
LVL 12

Expert Comment

by:StuFox100
ID: 18834877
Not sure what you are after - but something that maybe of interest are VMWare Appliances.
Check this one out:
http://www.vmware.com/vmtn/appliances/directory/295
Cheers
Stu
0
 
LVL 1

Expert Comment

by:GoUdVisKe
ID: 18891514
I think he's looking for a distro which has this software preinstalled, preferably without any other crap on it, if this is what you're asking for I don't think there is one. Just take a basic debian, install it without gui and stuff, strip it down a bit removing processes you don't need, and install snort with it's requirements.

S
0
 
LVL 1

Accepted Solution

by:
GoUdVisKe earned 250 total points
ID: 18891556
I forgot, there is a live CD which more or less has what you require: http://www.networksecuritytoolkit.org/nst/index.html
0
Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

 

Expert Comment

by:bengyson
ID: 18944590
Hi,

I believe this is what you looking for. It is based on the code from the Analysis Console for Intrusion Databases (ACID) project. This application provides a web front-end to query and analyze the alerts coming from a SNORT sensor. Running on CentOS, all has been fully configured and ready to run in VMware.

URL - http://sourceforge.net/projects/secureideas
0
 
LVL 12

Expert Comment

by:jahboite
ID: 19053316
Put back|track 2 in your arsenal.
http://www.remote-exploit.org/backtrack_download.html
0
 
LVL 2

Expert Comment

by:JasonPJohnson
ID: 25380482
They lost developers a long time ago but are now back in the game. http://www.skynet-solutions.net/easyids/

Easy IDS is a Snort / BASE / nmap distro that truly lives up to its name.

Install on a machine and you are ready to go . It is based off CentOS. I have it running on a few IDS around town.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
end-to-end encrypted email 16 77
Telco & Point to Point Internet VPN 3 83
active directory 6 77
Exchange 2013 "Connection closed unexpectedly" 2 39
There are many Password Managers (PM) out there to choose from. PM's can help with your password habits and routines, but they should not be a crutch you rely on too heavily. I also have an article for company/enterprise PM's.
An analysis of the phishing scam that has been affecting Google users, along with steps to take for protection, as well as what to do if you receive one of the emails.
The viewer will learn how to successfully download and install the SARDU utility on Windows 8, without downloading adware.
An overview on how to enroll an hourly employee into the employee database and how to give them access into the clock in terminal.

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now