snort-3.1.10.0-1.{fc32,fc33,fc34,el8}.x86_64.rpm -
Snort is an open source network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks.
It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows,
stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more.
See here for the announcement.
Note that these packages have been installed in the forensics-test repository.
libmodi{,-devel,-python3,-tools}-20210807-1.{fc32,fc33,fc34,el8}.x86_64.rpm and libmodi{,-devel,-python36,-tools}-20210807-1.el7.x86_64.rpm -
Libmodi is a library and tools to access the Mac OS disk image formats.
yaf{,-devel}-2.12.1-2.{fc32,fc33,fc34,el7,el8}.x86_64.rpm -
Yaf is Yet Another Flowmeter and yaf is a suite of tools to do flow metering.
Yaf is used as a sensor to capture flow information on a network and export that information in IPFIX format.
It reads packet data from pcap(3) dumpfiles as generated by tcpdump(1), from live capture from an interface using
pcap(3), an Endace DAG capture device,
or a Napatech adapter, aggregates these packets into flows, and exports flow records via IPFIX
over SCTP, TCP or
UDP, Spread, or into serialized IPFIX message streams (IPFIX files) on the local file system.
Note that for CentOS 7 and 8 for the x86_64 architecture, yaf has been built to use PF_Ring.
This release was rebuilt to accomodate PF_Ring version 8.
pfring-8.0.0-6812.{el7,el8}.x86_64.rpm -
PF_Ring is a new type of network socket that dramatically improves the packet capture speed.
This package contains header files and libraries, among other files, to support the PF_Ring network socket.
Here is the announcement of PF_Ring 7.8.
pfring-dkms-8.0.0.6812-6812.{el7,el8}.noarch.rpm -
PF_Ring is a new type of network socket that dramatically improves the packet capture speed.
This package conains the code and supporting files needed to create the PF_Ring kernel module.
ndpi-4.0.0-3293.{el7,el8}.x86_64.rpm -
ndpi is an open source LGPLv3 library for deep-packet inspection.
fmem-kernel-modules-fc34-x86_64-1.6-1.16.noarch.rpm -
Support for the following kernels were added for Fmem:
5.13.10-200 for FC34
5.13.9-200 for FC34
lime-kernel-modules-fc34-x86_64-1.9.1-16.noarch.rpm -
Support for the following kernels were added for LiME:
5.13.10-200 for FC34
5.13.9-200 for FC34
fmem-kernel-modules-fc33-x86_64-1.6-1.37.noarch.rpm -
Support for the following kernels were added for Fmem:
5.13.10-100 for FC33
5.13.9-100 for FC33
lime-kernel-modules-fc33-x86_64-1.9.1-37.noarch.rpm -
Support for the following kernels were added for LiME: