Snort Reactor

A package of scripts to watch for snort alerts, change / create firewall rules to block high priority alerts, and record recent blocks. It will increase block times based on previously recorded blocks

Features

Perl script
Manages IPTABLES blocks based on priority 2 or higher Snort alerts
Can be triggered by specially marked Snort custom messages, reversing source & target for blocking purposes
Maintains an SQL database of recent attacks by address & increases block times based on number of attacks seen

Project Activity

See All Activity >

License

BSD License

Follow Snort Reactor

Snort Reactor Web Site

Additional Project Details

Operating Systems

Linux

Intended Audience

Information Technology, Advanced End Users, System Administrators

User Interface

Command-line

Programming Language

Perl

Database Environment

SQLite

Related Categories

Perl Security Software, Perl Systems Administration Software, Perl Firewall Software

Registered

2010-07-02

Similar Business Software

Kerio Control

Detect threats, block viruses and secure VPN with the firewall built for SMB. Configure your firewall with easy-to-use traffic rules, controlling in- and outbound communications by URL, application, traffic type and more. Intrusion detection and prevention using the Snort system constantly...

See Software
GlassWire

Instantly see who or what your PC is talking to on GlassWire's network monitoring graph, plus see what your PC may have connected to in the past. Detect spyware, malware, badly behaving apps, and bandwidth hogs, then block their connections. Monitor other PCs on your network and get alerted...

See Software
Protectstar Firewall AI

Android Firewall is not only ready to use in seconds but also protects you from hacker attacks and notifies you when an app tries to send data to the internet. Get a real-time view of which apps are accessing which servers or wasting mobile data. With simple filter rules, you can even allow or...

See Software

Report inappropriate content