Update SmoothSec v-3.4 : IDS/IPS Linux distribution.

24-09-2013 SmoothSec 3.4 released

[*] Improvements and fixes

New available deployments:

Standard (IDS mode – All in one mode [Snorby + Sensor]
Console (IDS mode – Distributed [Only Snorby web console])”
Sensor (IDS mode – Distributed [Only sensor])”

Ips-standard (IPS mode – All in one mode [Snorby + Sensor])”
Ips-console (IPS mode – Distributed [Only Snorby web console])”
Ips-sensor (IPS mode – Distributed [Only sensor])”
[*] Upgrades
Pigsty unified2 spooler v0.1.8

[*] New tools

Rule2alert, On-the-fly packet generation based off snort and suricata rules.
greppcap.py, Python/Scapy tool to find and extract regex-matching sessions from libpcap files.
nstreams, identify the IP streams that are occurring on a network from a non-user friendly tcpdump.
pktstat, displays a real-time summary of packet activity on an interface.
arpalert, monitor ARP changes in ethernet networks.


Smooth-Sec is a lightweight and fully-ready IDS/IPS (Intrusion Detection/Prevention System) Linux distribution based on Debian 7 (wheezy), available for 32 and 64 bit architecture. The distribution includes the latest version of Snorby, Snort, Suricata, PulledPork and Pigsty. An easy setup process allows to deploy a complete IDS/IPS System within minutes, even for security beginners with minimal Linux experience

System Requirement :

  • VMware VM (Hardware Version 9)
  • 4 vCPU’s
  • 8GB of RAM
  • 2 vNIC’s (SPAN, mgmt)
  • 500GB of Storage
  • 1GB network throughout

Download :
smoothsec-3.4-i386.iso (804.3 MB)
smoothsec-3.4-amd64.iso (728.6 MB)
Our post before : http://seclist.us/smooth-sec-v-2-0-released.html
sources : https://github.com/smoothsec/docs/wiki