Smooth-Sec is a ready to-go IDS/IPS (Intrusion Detection/Prevention System)

It has been 6 months back when I heard about Suricata and now there is another development called Smooth-Sec to simplify the process to run this IPS/IDS.

What is Smooth-Sec?

Smooth-Sec is a ready to-go  IDS/IPS (Intrusion Detection/Prevention System) linux distribution based on the multi threaded Suricata IDS/IPS engine and Snorby, the top notch web application for network security monitoring. Smooth-Sec is built on Ubuntu 10.04 LTS using the TurnKey Core base as development platform. Functionality is the key point that allow to deploy a complete  IDS/IPS System up and running out of the box within a few minutes, even for security beginners with minimal Linux experience.

Snorby Features:
Metrics Metrics & Reports
Classifications
Full packet and session data.
Settings Custom Settings
Hotkeys

Suricata Features:
Native IPv6 Support
Automatic protocol detection
Multi threaded
Native hardware acceleration support
Passive OS and Portscan detection
L7 Protocol awareness
IP Reputation using scoring threshold
Distributed blocking & feedback
Global flowbits  and variables

Credits:
Smooth-Sec is developed by Phillip Bailey.
Snorby is developed by Dustin Webber .
Suricata is developed by open infosec foundation.
Turnkey-Linux is developed by www.turnkeylinux.org

Snorby login:
Snorby interface: https://ipaddress
Username: snorby@snorby.org
Password: snorby  (please change this password after the firts login)

Ssh login:
Username: root
Password: the password you have chose during the installation

Download: SmoothSec-1.1.iso

Size Compressed: 504 MB

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s