DORS/CLUC 2011

Smooth-Sec - instant Linux rjeenje za informacijsku sigurnost

Phillip Bailey Eclectic hacker, out of the box thinker and Info Sec professional. Developer of Smooth-Sec, the ready to go intrusion detection Linux distribution.

What is Smooth-Sec ?Smooth-Sec is a ready to-go IDS/IPS Linux distribution based on Ubuntu. Functionality is the key feature that allow to deploy a complete IDS/IPS System up and running out of the box within a few minutes, even for security beginners with minimal Linux experience.

First release 06-03-2011

Around 1500 users

All the pieces

Operating system:

Ubuntu Linux 10.04 Turnkey(LTS) Suricata Snorby

Intrusion detection engine:

Web front end and reporting: Database:

some db

Key features

Easy to install and fast to deploy Amazing and intuitive data visualization A powerful multi-treaded IDS engine

Installation in five in five shots ! (1)

Installation in five in five shots ! (2)

Installation in five in five shots ! (3)

Installation in five in five shots ! (4)

Installation in five in five shots ! (5)

The awesome of Snorby

Search the Threat

What's going on

Suricata the IDS/IPS engine

Multi threaded Native IPv6 Support Automatic protocol detection Passive OS and Portscan detection

Usage

Intrusion detection Intrusion prevention Malware analysis System and network forensics Learning platform (pen test labs or Info Sec classes)

Credits

Smooth-Sec is developed by Phillip Bailey. Snorby is developed by Dustin Webber. Snorby.org Suricata is developed by openinfosecfoundation.org Turnkey-Linux is developed by turnkeylinux.org

?www.bailey.st phillip@bailey.st @p0bailey

Hvala