bro - Bro is a powerful framework for network analysis and security monitoring
Bro is a powerful network analysis framework that is much different from the
typical IDS you may know. While focusing on network security monitoring, Bro
provides a comprehensive platform for more general network traffic analysis as
well. Well grounded in more than 15 years of research, Bro has successfully
bridged the traditional gap between academia and operations since its
inception. Today, it is relied upon operationally in particular by many
scientific environments for securing their cyberinfrastructure. Bro's user
community includes major universities, research labs, supercomputing centers,
and open-science communities.
by Johanna Amann (2015-02-09):
* Release 2.6.3-0
Update binpac submodule to v0.53 (Jon Siwek, Corelight)
Fixes a signed integer overlow in array bounds checks.
GH-435: fix null pointer deref in RPC analyzer (Jon Siwek, Corelight)
Was possible for some failed parsing calls in
RPC_Interpreter::DeliverRPC to set buf to a null-pointer, only for it
to later access it when checking whether the message length appeared to be legit.