[Snort-users] [ANNOUNCE] Wolfotrack 1.0 released

Sebastien Tricaud stricaud at ...14255...
Mon Apr 28 10:09:22 EDT 2008

Tears were flowing from our bellowed
Administrators out there.

Connection tracking is not always easy,
hence Wolfotrack, the conntrack killer that
aims to reduce the firewall use difficulty
that many people complained about for years.
This software makes this time gone! We are now
enhancing netfilter at the user level.

    \o\ \o| |o| \o/ /o/
    \o\ THERE IT IS /o/
    \o\ |o| |o/ /o/ /o/

The long...

and awaited...

Netfilter connection tracking killer!

The great Wolfotrack, based on our favorite game
Wolfenstein 3d!

You simply kill people that are tight to a state
updated by the connection tracking.

Everytime a door is opened, this table is refreshed.

And when the actor is killed, the connection tracking
associated is killed as well!

Wall of Quotes

"With wolfotrack, I look forward new connections. Banning p2p has never been
so fun !"
    -- Pascal Terjan, Mandriva kernel team

"Obviously the most significant new firewall GUI for productivity
increases and stopping real time attacks, since X-Window came out...
the best way for firewall admins to understand what's going on, track
it down, and kill it."
    -- Dragos Ruiu, (Can|Eu|Pac)Sec(West|) organizer

"Wolfotrack is the synthesis of the tremendous INL's experience on firewall GUI.
It overruns all existing interfaces by providing amazing productivity increase
for firewall administrator"
    -- Eric Leblond, NuFW author and INL co-founder

"Wolfotrack is the most comprehensive, cutting edge, visionary tool for
slaying evil guys connections as they come through, in real time, before
they can harm you for good."
    -- Cedric Blancher, Computer Security Researcher

Wolfotrack project

Youtube demo video: http://www.youtube.com/watch?v=z3zRnHPFPrc
Project Page: http://software.inl.fr/trac/wiki/Wolfotrack

Get it!

Shareware data files, with Nazi symbols replaced by 'nupiks':

The original shareware data files can be retrieved from:
(and rename .WL1 files into lower case)

Some history

People know how efficient psdoom is, and we needed something
similar to manipulate Netfilter connection states for customers.

Unfortunately, psdoom was too 'bling-bling' and may be hard to
manipulate the connection states because of weapons like BFG9000.

That is why Wolfenstein 3d was a natural choice.


Sebastien Tricaud
Victor Stinner
Laurent Defert

cmake .


$ sudo ./sdlwolf3d x3

Yes, it has to be runned as root ;-), and x3 will make the display bigger.

Known Issues
* Demo mode: Beware, the demo mode will actually kill your connections for
real. Make sure you are awake and ready :)
* x86_64: Simply does not work on this architecture. The program segfaults at

More information about the Snort-users mailing list