smooth-sec - ready to go linux solution for information security
TRANSCRIPT
DORS/CLUC 2011
Smooth-Sec - instant Linux rjeenje za informacijsku sigurnost
Phillip Bailey Eclectic hacker, out of the box thinker and Info Sec professional. Developer of Smooth-Sec, the ready to go intrusion detection Linux distribution.
What is Smooth-Sec ?Smooth-Sec is a ready to-go IDS/IPS Linux distribution based on Ubuntu. Functionality is the key feature that allow to deploy a complete IDS/IPS System up and running out of the box within a few minutes, even for security beginners with minimal Linux experience.
First release 06-03-2011
Around 1500 users
All the pieces
Operating system:
Ubuntu Linux 10.04 Turnkey(LTS) Suricata Snorby
Intrusion detection engine:
Web front end and reporting: Database:
some db
Key features
Easy to install and fast to deploy Amazing and intuitive data visualization A powerful multi-treaded IDS engine
Installation in five in five shots ! (1)
Installation in five in five shots ! (2)
Installation in five in five shots ! (3)
Installation in five in five shots ! (4)
Installation in five in five shots ! (5)
The awesome of Snorby
Search the Threat
What's going on
Suricata the IDS/IPS engine
Multi threaded Native IPv6 Support Automatic protocol detection Passive OS and Portscan detection
Usage
Intrusion detection Intrusion prevention Malware analysis System and network forensics Learning platform (pen test labs or Info Sec classes)
Credits
Smooth-Sec is developed by Phillip Bailey. Snorby is developed by Dustin Webber. Snorby.org Suricata is developed by openinfosecfoundation.org Turnkey-Linux is developed by turnkeylinux.org
?www.bailey.st [email protected] @p0bailey
Hvala