[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] Sagan version 0.2.0 released.

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] Sagan version 0.2.0 released.
From: "Champ Clark III [Quadrant Information Security]" <cclark@xxxxxxxxxxxxxxx>
Date: Mon, 22 Aug 2011 20:53:19 -0400

  ,-._,-.    Sagan [http://sagan.quadrantsec.com]
  \/)"(\/    By Champ Clark III & Quadrant InfoSec Team: [quadrantsec.com]
   (_o_)     Copyright (C) 2009-2011 Quadrant Information Security, et al.
   /   \/)   
  (|| ||)    
   oo-oo

        Quadrant Information Security [http://www.quadrantsec.com] is proud
to release Sagan version 0.2.0 [http://sagan.quadrantsec.com].  Please note
that the release site has changed!

What is Sagan?

Sagan is multi-threaded, real-time system and event-log monitoring software,
but with a twist. Sagan uses a "Snort" like rule set for detecting nefarious
events happening on your network and/or computer systems. If Sagan detects a
"bad thing" happening, it can do a number of things with that information. For
example, Sagan can store the information to a Snort MySQL database for viewing
with utilities like Snorby [http://www.snorby.org],  it can send e-mail(s)
about the event to the appropriate personnel,  it can store to a Prelude back
end, it can also spawn external utilities, as well as numerous other things.
 
Sagan can also correlate the events with your Intrusion Detection/Intrusion 
Prevention (IDS/IPS) system and basically acts like an SIEM (Security
Information & Log Management) system.

Release Information:

This is primarly a bug fix/stability release.  This release addresses many 
issues.   We've also decide to remove support for --program mode and Logzilla
support from this and future releases. 

Next stop for Sagan:

Sagan with Snortsam support in verison 0.2.1 

Thanks: 

Special thanks to Merlyn Cousins (AKA - DrForbin) with bug stomping/patches/
development.

Main Site: http://sagan.quadrantsec.com
Release Notes: http://quadrantsec.com/about/blog/sagan_version_0_2_0_released/


-- 

   Champ Clark III | Quadrant Information Security | 904-253-7856
                      http://www.quadrantsec.com


GPG Key ID: 0B30A6A7
Key fingerprint = A154 17D5 F16D 8C09 69FA  618B 3877 B04C 0B30 A6A7
If it wasn't for C, we'd be using BASI, PASAL and OBOL.

Attachment: pgpJpqSvGwpeC.pgp
Description: PGP signature

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: [Full-disclosure] Reversing Embedded Firmware
Next by Date: [Full-disclosure] INSECT Pro - Advisory 2011 0823 - Zero day - XSS in BING.COM
Previous by thread: Re: [Full-disclosure] Reversing Embedded Firmware
Next by thread: [Full-disclosure] INSECT Pro - Advisory 2011 0823 - Zero day - XSS in BING.COM
Index(es):
- Date
- Thread