[Snort-users] Aanval 5.5 (Snort & Syslog intrusion and correlation) released

RA Operations operations at ...13693...
Wed Mar 31 13:10:10 EDT 2010


All;

-----------------------------------------------------------------------------
Aanval 5.5 is now available
-----------------------------------------------------------------------------

We are very pleased this morning to announce the public, immediate availability of Aanval 5.5.

Aanval is the industry's leading web-based gui for snort and syslog intrusion detection and correlation. Government security and defense organizations from more than a half dozen countries, educational institutions from around the world, global financial organizations as well as space exploration and military weapons manufacturers rely upon Aanval as a part of their security infrastructure.

Remember, Aanval is available as a free, single sensor version (without licenses, Aanval supports a single Snort and Syslog sensor).

-----------------------------------------------------------------------------
Aanval Details & Screenshots
-----------------------------------------------------------------------------

Screenshots

http://www.aanval.com/aanval/

Below is a list of some of the changes that we've made in v5.5:

: An all new look and feel
: New Collection Group Manager
: New Notes System
: New syslog filter management system
: New port.map added to /conf/maps/
: Added payload: keyword to string match against payload data
: Added snort rule reload command option for sensor management tools
: Added ability to add events to a collection group through automated actions
: Added ability to delete syslog sensors
: Added underpinnings for several to be announced features
: Updated syslog filter assignment system
: Updated window manager stability
: Updated window manager window placement
: Removed shrinking window feature
: Extended free limited auto-logout to 30 minutes
: Removed all AMF, migrated back to XML
: Login banner text is configurable via idsOps database table
: PHP compatibility updates
: Flex SDK updates
: Fixed dozens of bugs with the full removal of AMF
: Fixed regular expression bug when filter contains special characters
: Fixed live monitor hostname timeout issue
: Fixed event details hostname timeout issue
: Fixed datastore rotation by day bug, which prevented correct rotation
: Fixed various html and special character data transmission bugs
: Fixed new user accounts randomly not being able to see event data
: Fixed syslog license error bug

... and much, much more is on the way as we finalize great features like the following:

New Situational Awareness display
New Signature Management
New Signature Editor
New Event Browser
New Event Correlation
Event Tracking and Marking
Incident and Event Response
Signature Correlation

-----------------------------------------------------------------------------
New Aanval Appliances
-----------------------------------------------------------------------------

We have brought the industry's #1 Snort & Syslog intrusion detection and correlation console together with the worlds most stable and advanced operating system.

Aanval Appliances are available in a variety of hardware and software combinations to fit every environment.

Single sensor deployments to large-scale enterprise intrusion arrays, Aanval Appliances are pre-configured for full intrusion detection and correlation functionality out-of-the-box.

http://www.aanval.com/appliances/

<>-<>
Aanval Intrusion Detection and Correlation
Online @ Aanval dot Com

Interesting Fact: Aanval is owned and operated by Tactical FLEX

Fon: 800.921.2584
Fax: 501.648.0875

"Information Security Vulnerability and Risk Management Solutions"

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20100331/37c72536/attachment.html>


More information about the Snort-users mailing list