SAM is a real-time Snort alert monitor. It provides many ways to indicate that you may be experiencing an intrusion attempt on your network, including audio/visual warnings, email warnings, etc.
|Operating Systems||OS Independent|
|Implementation||Ruby on Rails Ruby|
Release Notes: IP addresses are now tagged with their country of origin. Application-level authentication has been added. A heat map that shows the distribution of high priority alerts by country has been added.
Release Notes: Major iPhone interface changes were made. Minor updates and big fixes were made. A Nagios plugin was added to monitor the Threat Index.
Release Notes: A bug where the threat index wasn't being calculated correctly was fixed. A bug where high priority attacks on the dashboard weren't being filtered correctly was fixed.
Release Notes: The events page didn't understand the minutes_ago param, so clicking a link from the dashboard would force the events page to run through the full database instead of that timeframe. Also, the Threat Index didn't include high and medium severities in the same calculation, so you might see the same IP twice, and not the aggregate as you should have. These issues have been fixed.
Release Notes: A bug was fixed so that the default dashboard now shows the correct timeframe. Dashboard widgets now refresh automatically. ARIN links were added to all IP addresses. A visual cue was added for high threat indexes.