[Snort-users] SnortSnarf version 020516.1 now available

James Hoagland hoagland at ...47...
Thu May 16 16:37:03 EDT 2002

Greetings everyone,

Silicon Defense is please to announce the release of a new release of 
SnortSnarf, version 020516.1.  Here are the changes from the previous 

+ SnortSnarf can now read from a Snort Mysql database; the 
SnortDBInput module is written and maintained by Ed Davison 
(Ed.Davison at ...5893...)
+ new -mintime=<time> and -maxtime=<time> let you control the time 
range of alerts you want included in the output [Ed Davison helped 
with this]
+ new -Xsid lets you exclude alerts from certain snort ids from being displayed
+ -usage option added
+ -modpath will show you the directories that SnortSnarf tries to 
gets its included files from and shows you which seem to have 
SnortSnarf components in them
+ -v shows the SnortSnarf version number
+ removed redundant listing of "top" links on start page [spotted by 
Russell Fulton]
+ documentation updated and Usage file improved

SnortSnarf is now an alert browsing option for a whole new class of 
Snort users thanks to the SnortDBInput module.  Thanks to Ed Davison 
for writing this and making it available.  He plans to send out a 
separate e-mail about the module.

Some users might find the three new input filters handy.  And it 
should now be easier to find out about the 32 different command line 
options now that the is a -usage option and an improved Usage file.

You can download SnortSnarf and find out more from:


Happy SnortSnarfing,

|*      Jim Hoagland, Associate Researcher, Silicon Defense      *|
|*            --- Silicon Defense: IDS Solutions ---             *|
|*  hoagland at ...47..., http://www.silicondefense.com/  *|
|*   Voice: (530) 756-7317                 Fax: (530) 756-7297   *|

More information about the Snort-users mailing list