[e2e] Bro now publicly available

Vern Paxson vern at icir.org
Sun Nov 17 22:58:03 PST 2002


This is to announce that the Bro intrusion detection system is now publicly
available in source code form under a BSD-like license, with a (modest)
home page at:

        http://www.icir.org/vern/bro.html

This may be of interest to E2Eers because it contains a number of
protocol analyzers that can munch on tcpdump traces (or live traffic,
of course) and extract high-level application events from the reassembled
TCP/UDP streams.

		Vern




More information about the end2end-interest mailing list