The developers at Tactical FLEX have been working extremely hard (as usual). They completed and released version 5.6 of Aanval and we are extremely pleased to announce it is immediately available for download and automated updates. This version of Aanval includes several features and functions recently requested by Aanval customers. After evaluating these suggestions the Tactical FLEX developers quickly got to work coding them into version 5.6.
A few of the changes available in Aanval version 5.6:
: New Signature Source Manager
: New Policy Management System
: New Signature Management System
: New signature import and storage mechanism
: New signature download mechanism
: Added iPhone access enable and disable option
: Added signature source support for http/https and local directories
: Added policy management feature to support mixing signatures from multiple sources
: Fixed bug in which snort configuration file could overwrite with null data
: Fixed snort update and restart not initiating on configuration and policy changes
: Fixed dozens of minor bugs
: Various user interface enhancements
: Much, much more
A few users may notice some suggested features are not yet available or did not make it into this release. We appreciate your patience and encourage you to stay tuned as we release several maintenance updates over the coming few days.
Find a bug? Let us know... send an email to support.group@aanval.com
Need support? You can purchase Aanval licenses, training and support securely online @ www.aanval.com.
Enjoy and stay tuned.
Intrusion Detection, InfoSec News, Network and Internet Security News Items and Comments.
Friday, July 30, 2010
Wednesday, July 21, 2010
Is open source Snort dead? The Debate has just begun!
Ellen Messmer's article in Network World yesterday provides an update on Snort 3.0 and a rival product, the OISF's first open source release Suricata 1.0. Many see it as superior to Snort since it inspects network packets using a multi-threading technology to inspect more than one packet at a time. The following are quotes from Ellen's article.
"The Open Information Security Foundation (OISF) is a nonprofit group funded by the U.S. Dept. of Homeland Security (DHS) to come up with next-generation open source IDS/IPS. The OISF was founded about a year and a half ago with $1 million in funding from a DHS cybersecurity research program, according to Matt Jonkman, president of OISF. He says OISF was founded to form an open source alternative and replacement to Snort, which he says is now considered dead since the research on what is supposed to be the next-generation version of Snort, Snort 3.0, has stalled. "Snort is not conducive to IPv6 nor to multi-threading," Jonkman says......"
Snort's in a very HOT debate. http://bit.ly/ceIggx
"The Open Information Security Foundation (OISF) is a nonprofit group funded by the U.S. Dept. of Homeland Security (DHS) to come up with next-generation open source IDS/IPS. The OISF was founded about a year and a half ago with $1 million in funding from a DHS cybersecurity research program, according to Matt Jonkman, president of OISF. He says OISF was founded to form an open source alternative and replacement to Snort, which he says is now considered dead since the research on what is supposed to be the next-generation version of Snort, Snort 3.0, has stalled. "Snort is not conducive to IPv6 nor to multi-threading," Jonkman says......"
Snort's in a very HOT debate. http://bit.ly/ceIggx
Tuesday, July 20, 2010
Aanval iPhone App Approved, now available at iTunes
I announced today that the new Aanval iPhone App is available on the iTunes App Store! Aanval is the first and only intrusion detection correlation console to provide native iPhone, iPod Touch and iPad access to live Snort and Syslog event data.
Loyal Moses, Tactical FLEX company owner said, “Users of the new iPhone App can now access Aanval event details directly from an iPhone, iPod Touch and iPad, even on the go!”
The new iPhone App is compatible with both the free single sensor versions of Aanval as well as fully licensed commercial installations of Aanval. Current Aanval users or customers may purchase and install it to enjoy live access to Aanval event data. http://itunes.apple.com/us/app/aanval/id381007750?mt=8
Please note, Aanval iPhone requires Aanval 5.5 build 50743 or greater.
Moses added, “Tactical FLEX is committed to a very aggressive feature enhancement timeline for Aanval iPhone and will be releasing updates over the next several weeks.“
Aanval is the industry's leading web-based gui for snort and syslog intrusion detection and correlation. Government security and defense organizations from more than a half dozen countries, educational institutions from around the world, global financial organizations as well as space exploration and military weapons manufacturers rely upon Aanval as a part of their security infrastructure. The Aanval console system is designed to scale from small single sensor installations to global enterprise deployments. In total over 5,500 organizations in 95 countries use Aanval to secure their network(s). Aanval iPhone screen shots and a list of select Aanval customers are available on the Aanval Web site at www.aanval.com.
Subscribe to:
Posts (Atom)