Suricata 4.0.0-rc1 released and ready for testing! https://suricata-ids.org/2017/06/28/suricata-4-0-0-rc1-ready-for-testing/
Victor Julien
- 9 Followers
- 9 Following
- 15 Posts
NFSv3 progress in Suricata.
File extraction is ready and a basic logger as well. No detection yet.
Implemented in Rust. https://mastodon.network/media/CA8m5gOW7XZeBK1xi04
polluxRemote heap overflow in the Linux networking stack (macsec) http://seclists.org/oss-sec/2017/q2/121 #linux
Shawn Webb
SeaHorn -
A fully automated analysis framework for LLVM-based languages https://seahorn.github.io/
A fully automated analysis framework for LLVM-based languages https://seahorn.github.io/
the grugqUpdate on the the Linux UDP RCE. From what I've seen from ppl that do kernel exploiting... they can't really see a way to turn it into a useful exploit.
It looks like a vulnerability with the right scary characteristics, but practically not a major concern.
It is not (likely to be) a "one shot remote ring 0" exploit.
Just did a successful build of #suricata on PPC64el. Compiles w/o warnings and unittests pass.
Used the IBM Power Development Cloud, which gives free access for Open Source devs.
Arti-FleurCome see G. Couprie & me talk about secure parsers at LangSec http://spw17.langsec.org/workshop-program.html
#Suricata 64bit on Windows 10 pro. Using Msys2/mingw64/npcap and lots of small code tweaks.
This is not using CYGWIN, which is our usual way of doing Windows.
Things I had to tweak: mkdir takes no permissions, glob not available, memmem() not available, random functions not available, 'uint' doesn't work, byteorder detection didn't work. Lots of small things.