https://inliniac.net/blog/category/sidreporter/ Recent content in Sidreporter on Inliniac Hugo en Mon, 05 Jan 2009 13:26:06 +0000 https://inliniac.net/blog/2009/01/05/available-for-contract-work/ Mon, 05 Jan 2009 13:26:06 +0000 https://inliniac.net/blog/2009/01/05/available-for-contract-work/ <p>This year there will be a lot of work that needs to be done for the <a href="http://www.openinfosecfoundation.org/">Open Infosec Foundation</a>. And like I wrote a few days ago, a lot of work is already being done. However, most of it is unpaid at this time as it will be some months before our funding comes in. So at least until then I&rsquo;m available and looking for contract work.</p> <p>For the last two years I&rsquo;ve been doing work as a contractor in the (open source) security field. My experience is mostly in coding in C and Perl, primarily on <a href="http://www.snort.org/">Snort</a> and <a href="http://snort-inline.sf.net/">Snort_inline</a>. Recently I created the (Perl language) <a href="http://doc.emergingthreats.net/bin/view/Main/SidReporter">SidReporter</a> program for <a href="http://www.emergingthreats.net/">Emerging Threats</a>. Areas I worked in: IPv6 IDS/IPS coding, signature writing, Web Application Firewalls, threading, bandwidth accounting, and more&hellip;</p> https://inliniac.net/blog/2008/10/30/first-sidreporter-statistics-available/ Thu, 30 Oct 2008 15:11:37 +0000 https://inliniac.net/blog/2008/10/30/first-sidreporter-statistics-available/ <p>Matt Jonkman just <a href="http://www.emergingthreats.net/index.php/component/content/article/1-latest/127-initial-sidreporter-statistics-online.html">announced</a> that the first stats of SidReporter are available <a href="http://www.emergingthreats.net/index.php/sidreporter-statistics.html">here</a>. Matt writes:</p> <blockquote> <p>These will become more interesting the more sites we have reporting, so please consider running  the client. It&rsquo;s painless, anonymous, and will contribute to us greatly improving the signature base we all use.</p></blockquote> <p>It will be interesting to see what data this can bring us. Congrats Matt!</p> https://inliniac.net/blog/2008/08/21/sidreporter-beta2-released/ Thu, 21 Aug 2008 15:08:42 +0000 https://inliniac.net/blog/2008/08/21/sidreporter-beta2-released/ <p>A little over a week ago the second beta of the SidReporter from <a href="http://www.emergingthreats.net/">Emerging Threats</a> was released (see <a href="http://www.emergingthreats.net/content/view/95/1/">http://www.emergingthreats.net/content/view/95/1/</a>). I&rsquo;ve been working with Matt Jonkman to setup this new project at Emerging Threats, mostly in writing the reporter scripts. I think it&rsquo;s an exciting new project that could provide the community with great information. As Matt <a href="http://www.emergingthreats.net/content/view/93/1/">wrote</a> on the initial announcement:</p> <blockquote> <p>&ldquo;As mentioned a few weeks ago, we&rsquo;ve been working to bring out tool to anonymously report IDS/IPS hits. Similar to DShield&rsquo;s firewall log reporting, we believe we can make some incredible data inferences with this information, as well as help improve the quality of our signatures while giving us all feedback to tune our rulesets.</p>