24-09-2013 SmoothSec 3.4 released
[*] Improvements and fixes
New available deployments:
Standard (IDS mode – All in one mode [Snorby + Sensor]
Console (IDS mode – Distributed [Only Snorby web console])”
Sensor (IDS mode – Distributed [Only sensor])”
Ips-standard (IPS mode – All in one mode [Snorby + Sensor])”
Ips-console (IPS mode – Distributed [Only Snorby web console])”
Ips-sensor (IPS mode – Distributed [Only sensor])”
Pigsty unified2 spooler v0.1.8
[*] New tools
Rule2alert, On-the-fly packet generation based off snort and suricata rules.
greppcap.py, Python/Scapy tool to find and extract regex-matching sessions from libpcap files.
nstreams, identify the IP streams that are occurring on a network from a non-user friendly tcpdump.
pktstat, displays a real-time summary of packet activity on an interface.
arpalert, monitor ARP changes in ethernet networks.
Smooth-Sec is a lightweight and fully-ready IDS/IPS (Intrusion Detection/Prevention System) Linux distribution based on Debian 7 (wheezy), available for 32 and 64 bit architecture. The distribution includes the latest version of Snorby, Snort, Suricata, PulledPork and Pigsty. An easy setup process allows to deploy a complete IDS/IPS System within minutes, even for security beginners with minimal Linux experience
System Requirement :
- VMware VM (Hardware Version 9)
- 4 vCPU’s
- 8GB of RAM
- 2 vNIC’s (SPAN, mgmt)
- 500GB of Storage
- 1GB network throughout