Razorback is a framework for an intelligence driven security solution.
It consists of a Dispatcher at the core of the system, surrounded by
Nuggets of varying types.
This nugget checks the VirusTotal API for the MD5 of the submitted file.
If the file is found, the short data of the alert will contain the results
from the JSON response from VirusTotal.
WWW: http://razorbacktm.sourceforge.net/
PR: ports/167755
Submitted by: Tom Judge <tom@tomjudge.com>
Razorback is a framework for an intelligence driven security solution.
It consists of a Dispatcher at the core of the system, surrounded by
Nuggets of varying types.
The Yara nugget allows modified Yara rules to dictate which flags are
set when they alert.
WWW: http://razorbacktm.sourceforge.net/
PR: ports/167756
Submitted by: Tom Judge <tom@tomjudge.com>
Razorback is a framework for an intelligence driven security solution.
It consists of a Dispatcher at the core of the system, surrounded by
Nuggets of varying types.
This nugget is an open-source PDF analyzer that does not require an
external commercial application to function.
WWW: http://razorbacktm.sourceforge.net/
PR: ports/167751
Submitted by: Tom Judge <tom@tomjudge.com>
Razorback is a framework for an intelligence driven security solution.
It consists of a Dispatcher at the core of the system, surrounded by
Nuggets of varying types.
This nugget provides logging output via syslog.
WWW: http://razorbacktm.sourceforge.net/
PR: ports/167754
Submitted by: Tom Judge <tom@tomjudge.com>
Razorback is a framework for an intelligence driven security solution.
It consists of a Dispatcher at the core of the system, surrounded by
Nuggets of varying types.
SWF Nugget is a Razorback Detection Nugget that scans Flash files
collected by Razorback Collector Nuggets. SWF Nugget decompresses
(as necessary) and parses Flash files to detect attacks exploiting
known vulnerabilities.
The scan results are sent back to Razorback Dispatcher to correlate
with other Razorback Nuggets.
WWW: http://razorbacktm.sourceforge.net/
PR: ports/167753
Submitted by: Tom Judge <tom@tomjudge.com>
Razorback is a framework for an intelligence driven security solution.
It consists of a Dispatcher at the core of the system, surrounded by
Nuggets of varying types.
The scripting nugget uses XML across named pipes to pass registration,
alerting and logging information back to the system. This allows the
use of any scripting (or even compiled) language that can pass XML out
STDOUT with Razorback.
WWW: http://razorbacktm.sourceforge.net/
PR: ports/167752
Submitted by: Tom Judge <tom@tomjudge.com>
Razorback is a framework for an intelligence driven security solution.
It consists of a Dispatcher at the core of the system, surrounded by
Nuggets of varying types.
WWW: http://razorbacktm.sourceforge.net/
PR: ports/167785
Submitted by: Tom Judge <tom@tomjudge.com>
Razorback is a framework for an intelligence driven security solution.
It consists of a Dispatcher at the core of the system, surrounded by
Nuggets of varying types.
This nugget provides ClamAV integration.
WWW: http://razorbacktm.sourceforge.net/
PR: ports/167745
Submitted by: Tom Judge <tom@tomjudge.com>
Razorback is a framework for an intelligence driven security solution.
It consists of a Dispatcher at the core of the system, surrounded by
Nuggets of varying types.
This nugget handles archive decompression.
WWW: http://razorbacktm.sourceforge.net/
PR: ports/167743
Submitted by: Tom Judge <tom@tomjudge.com>
Razorback is a framework for an intelligence driven security solution.
It consists of a Dispatcher at the core of the system, surrounded by
Nuggets of varying types.
WWW: http://razorbacktm.sourceforge.net/
PR: ports/167739
Submitted by: Tom Judge <tom@tomjudge.com>
Razorback is a framework for an intelligence driven security solution.
It consists of a Dispatcher at the core of the system, surrounded by
Nuggets of varying types.
WWW: http://razorbacktm.sourceforge.net/
PR: ports/167738
Submitted by: Tom Judge <tom@tomjudge.com>
validating credentials. It is designed to be highly scalable for use in an HPC
cluster environment. It allows a process to authenticate the UID and GID of
another local or remote process within a group of hosts having common users and
groups. These hosts form a security realm that is defined by a shared
cryptographic key. Clients within this security realm can create and validate
credentials without the use of root privileges, reserved ports, or
platform-specific methods.
WWW: http://code.google.com/p/munge/
PR: ports/166386
Submitted by: Muhammad Moinur Rahman <5u623l20@gmail.com>
from ISC. These patched versions contain a critical bugfix:
Processing of DNS resource records where the rdata field is zero length
may cause various issues for the servers handling them.
Processing of these records may lead to unexpected outcomes. Recursive
servers may crash or disclose some portion of memory to the client.
Secondary servers may crash on restart after transferring a zone
containing these records. Master servers may corrupt zone data if the
zone option "auto-dnssec" is set to "maintain". Other unexpected
problems that are not listed here may also be encountered.
All BIND users are strongly encouraged to upgrade.
