Smooth-Sec is a ready to-go IDS/IPS (Intrusion Detection/Prevention System) Linux distribution based on the multi threaded Suricata IDS/IPS engine and Snorby, the top notch web application for network security monitoring. Smooth-Sec is built on Ubuntu 10.04 LTS using the TurnKey Core base as development platform.
Functionality is the key point that allows a user to deploy a complete IDS/IPS System up and running out of the box within a few minutes, even for security beginners with minimal Linux experience.
Features
Snorby
- Metrics Metrics & Reports
- Classifications
- Full packet and session data.
- Settings Custom Settings
- Hotkeys
Suricata
- Native IPv6 Support
- Automatic protocol detection
- Multi threaded
- Native hardware acceleration support
- Passive OS and Portscan detection
- L7 Protocol awareness
- IP Reputation using scoring threshold
- Distributed blocking & feedback
- Global flowbits and variables
Details
Snorby login:
Snorby interface: https://ipaddress
Username: [email protected]
Password: snorby (please change this password after the firts login)
Ssh login:
Username: root
Password: the password you have chose during the installation
You can download Smooth-Sec here:
Or read more here.