| SNORT | |
| Submit Date: 9/27/2001 3:11:56 PM | License Info: GPL Price: free |
| Short Description: Award winning Intrusion Detection System | |
| Web Link: http://www.snort.org/ | |
| Home Page: http://www.snort.org/ | |
Rating:  | |
| Submitted By: CERI Labs | |
| Information: CERI Lab Note: SNORT is a powerful program that has applications for both IDS for business as well as for law enforcement network investigations. Contact us at cerilabs@cyberenforcement.com for questions as well as implementation solutions.
---------
The Open Source Network Intrusion Detection System. There are three main modes in which Snort can be configured: sniffer, packet logger, and network intrusion detection system. Sniffer mode simply reads the packets off of the network and displays them for you in a continuous stream on the console. Packet logger mode logs the packets to the disk. Network intrusion detection mode is the most complex and configurable configuration, allowing Snort to analyze network traffic for matches against a user defined rule set and perform several actions based upon what it sees. | |
| StegAlyzerSS | |
| Submit Date: 7/26/2005 3:24:36 PM | License Info: Single-user Price: |
| Short Description: Steganography Analyzer Signature Scanner | |
| Web Link: http://www.sarc-wv.com/products.aspx | |
| Home Page: http://www.backbonesecurity.com | |
| Rating: | |
| Submitted By: Webmaster | |
| Information: StegAlyzerSS detects 29 distinct signatures of steganography applications and also includes functions to identify file types that may be potential carrier files (i.e., may contain hidden information). Techniques and procedures available to extract information hidden with each of the 29 applications for which a signature exists. Contact the SARC for details and pricing.
| |
| Steganography Application Fingerprint Database (SAFDB) | |
| Submit Date: 7/26/2005 3:20:58 PM | License Info: Single-user Price: |
| Short Description: MS Access database that contains application profiles for 230 digital steganography applications and | |
| Web Link: http://www.sarc-wv.com/products.aspx | |
| Home Page: http://www.backbonesecurity.com | |
| Rating: | |
| Submitted By: Webmaster | |
| Information: SAFDB can be use to help the examiner determine if a
steganography application exists on seized or suspect storage media. If a
steganography application is found, chances are it was used to hide something. The application profiles in SAFDB can be consulted to determine the technique used to hide the information which may facilitate attempts to extract any hidden information. Copies of the steganography applications are available from the SARC's archives for use by the examiner and/or SARC technical staff to attempt hidden information extraction. | |
| Stunnel | |
| Submit Date: 6/20/2002 10:10:38 AM | License Info: see website Price: (free) see website |
| Short Description: Universal SSL Wrapper | |
| Web Link: http://www.stunnel.org/ | |
| Home Page: http://www.stunnel.org/ | |
| Rating: | |
| Submitted By: CERI Research | |
| Information: Stunnel is a program that allows you to encrypt arbitrary TCP connections inside SSL (Secure Sockets Layer) available on both Unix and Windows. Stunnel can allow you to secure non-SSL aware daemons and protocols (like POP, IMAP, LDAP, etc) by having Stunnel provide the encryption, requiring no changes to the daemon's code. | |