Release Notes: Interactive Unix Socket mode was added. IP Reputation support was added. Command line options were improved. The rule analyzer was improved. File log output was improved. Endace DAG card live stats support was added. A new HTTP event was added. Many issues were fixed.
Release Notes: Napatech capture card support was improved. Support for the pkt_data keyword was added. HTTP inspection was made more configurable. Live packet capture stats support was added. The stream reassembly engine was improved. Performance enhancements were made. The rule analyzer was improved. Many issues were fixed.
Release Notes: Several accuracy and stability issues were fixed. OpenBSD 5.2 support was added.
Release Notes: This release fixes several accuracy and stability issues, serveral false positives, and a file extraction corruption bug.
Release Notes: A Lua scripting detection keyword was added. Per-server HTTP parsing settings were made much more configurable. IP Defrag engine performance was much improved. Global thresholding was improved. Rule profiling performance was improved. Many other performance enhancements were made. Many issues were fixed.
Release Notes: Several accuracy issues were fixed. HTTP multipart parsing bugs were fixed. Several packet acquisition bugs were fixed. A stream engine bug was fixed.
Release Notes: AF_PACKET IPS mode support was added. Custom HTTP logging was added. TLS cert logging, storing, and fingerprint matching was added. Support for decoding various tunnel protocols was added. NFQ fail-open support was added. A rule option for limiting inspection to IPv4 or IPv6 was added. The filesize keyword was added. Delayed detection engine initialization support was added. Various performance improvements were made.
Release Notes: AF_PACKET performance was much improved. Defrag engine performance was improved. HTTP URI double decoding handling was made configurable. The stream engine was made more robust. The Windows build was fixed. Various other issues were fixed.
Release Notes: This release adds a TLS/SSL handshake parser, an HTTP user agent keyword, experimental rule reloading support, AF_PACKET bpf support and packet loss counters, Napatech hardware support, a configuration test mode, a rule analyzer, and on-the-fly MD5 calculation and matching for files. Performance and scalability have been improved.
Release Notes: This release adds live rule reload support, AF_PACKET bpf support, a rule analyzer, improved file MD5 matching, a keyword to match on User-Agent in HTTP, and general accuracy and stability improvements.