Re: Announcing Allthreats

After implementing a similar tool for analyzing rotating packet
captures I found honeysnap to often times create corrupted files when
extracting out of http. Have you experienced similar issues?

http://doc.emergingthreats.net/bin/view/Main/PcapParser

Regards,

Will

On Tue, Jun 23, 2009 at 11:00 AM, Ismael Briones<ismak@xxxxxxxxxxx> wrote:
I would like to announce the www.allthreats.com.

Allthreats is a free online network traffic analyzer. This system is
able to analyze a pcap file with several tools: IDS (only Snort at the
moment [Sourcefire VRT and Emerging Threats signatures], I’ll integrate
Bro IDS soon), Honeysnap (from honeynet project. It’s able to analyze
HTTP, FTP and SMTP traffic, extract files from the pcap and analyze them
with several antivirus engines [by now: Clamav, Bitdefender and Avira] ).

See the demo
(http://www.allthreats.com/upload/7c/bb/2c/32/86/3a/b2/81/91/3a/9e/ad/be/9c/6e/83/f3/3e/72/e2//7cbb2c32863ab281913a9eadbe9c6e83f33e72e2.html)
for a comprehensive overview of the capabilities of Allthreats.

This service can analyze binaries with several AV engines (like other
well-knonwn online services), nevertheless it adds a new functionality:
Remote File Analyzer (URL Analyzer). You don’t have  to download the
binary, we download it for you.

I would like to add more IDS and antivirus engines, so if you’re
interested in add your AV or IDS engine, please send me an email:
engines@xxxxxxxxxxxxxx

Ismael
Lead Developer Allthreats




-----------------------------------------------------------------
Securing Your Online Data Transfer with SSL.
A guide to understanding SSL certificates, how they operate and their application. By making use of an SSL certificate on your web server, you can securely collect sensitive information online, and increase business by giving your customers confidence that their transactions are safe.
http://www.dinclinx.com/Redirect.aspx?36;5001;25;1371;0;1;946;9a80e04e1a17f194

Relevant Pages

  • Re: AW: Announcing Allthreats
    ... Actually the files (pcap files) are encrypted and stored in the ... able to analyze a pcap file with several tools: ... Bro IDS soon), Honeysnap (from honeynet project. ... with several antivirus engines ...
    (Focus-IDS)
  • Re: AW: Announcing Allthreats
    ... I've detected that some queries to analyze binarie file or URL's ... Subject: AW: Announcing Allthreats ... Bro IDS soon), Honeysnap (from honeynet project. ... with several antivirus engines ...
    (Focus-IDS)
  • Announcing Allthreats
    ... Allthreats is a free online network traffic analyzer. ... able to analyze a pcap file with several tools: ... Bro IDS soon), Honeysnap (from honeynet project. ... with several antivirus engines ...
    (Focus-IDS)
  • AW: Announcing Allthreats
    ... Allthreats is a free online network traffic analyzer. ... able to analyze a pcap file with several tools: ... Bro IDS soon), Honeysnap (from honeynet project. ... with several antivirus engines ...
    (Focus-IDS)
  • Re: IDS data sets
    ... any IDS / Network traffic analysis tool (as far as the TCPDump logs are ... utilities to analyze them. ... Intrusion detection systems: a critique of the 1998 and 1999 DARPA ...
    (Focus-IDS)