http://www.nycsnort.org Tue, 29 Jun 2010 16:52:39 +0000 http://backend.userland.com/rss092 en According to VRT blog ... Today the Snort Web Team made a change to the way that Snort rules are downloaded from snort.org. Hopefully this will result in faster downloads for most people. The main thing to note though is that the actual file download links have changed. First, there is no ... http://www.nycsnort.org/?p=68 Solera Networks, a leading network forensics products and services company today announced its partnership with Sourcefire, Inc. (Nasdaq:FIRE), the creators of SNORT® and a leader in intelligent Cybersecurity solutions. Solera Networks can now integrate its award-winning network forensics technology directly into Sourcefire’s event analysis. The integration enhances Sourcefire’s packet analysis ... http://www.nycsnort.org/?p=67 Matt Olney (of Sourcefire VRT) has read through and analyzed the “Protecting Cyberspace as a National Asset Act of 2010” (pdf), a 199 page piece of legislation introduced by Senator Lieberman (I-CT) along with Senator Susan Collins (R-ME) and Senator Thomas Carper (D-DE).  It is an excellent ... http://www.nycsnort.org/?p=66 The Snorby virtual appliance provides a preconfigured out of the box Snorby front-end  for snort, the popular intrusion detection system . The Snorby interface is  developed by Dustin Webber. This appliance is indicated for security professionals with a depth knowledge of intrusion detection and security  ... http://www.nycsnort.org/?p=64 Near Real-Time Detection (Razorback) is the result of extensive research into detection of attacks hidden inside numerous layers of compression, obfuscation, and evasion techniques across multiple file formats. Razorback in its current form is a plugin to the Snort detection engine. Razorback addresses the issues with file format parsing ... http://www.nycsnort.org/?p=63 Hi Snort® User, On behalf of the Snort Team at Sourcefire, I’d like to invite you to attend the next session of the Snort Users Webinar Series. In this webinar Steve Sturges Snort development team manager will discuss Snort Performance Tuning – Rules and Preprocessors This discussion will focus on guidelines for tuning ... http://www.nycsnort.org/?p=62 I've had some calls about holding another Snort User Group meeting soon.  If you are interested shoot me an email at mo@ciphertechs.com http://www.nycsnort.org/?p=61 http://www.nycsnort.org/?p=60 One of the many things that occupy the time of the VRT is reviewing rule performance data, whether that data is internally generated from one of our test environments or received from customer reports. In the “Rule Performance�? series of blog posts, we’ll look at the set of issues that ... http://www.nycsnort.org/?p=59 Clam AntiVirus (ClamAV) is a free, cross-platform antivirus software tool-kit capable of detecting many types of malicious software, including viruses. One of its main uses is on mail servers as a server-side email virus scanner. The application was developed for Unix and has third party versions available for AIX, BSD, ... http://www.nycsnort.org/?p=58