Each Policy can have it's own location to check for updates
Selectable Web auto update
Auto update from a different local policy
Support for SnortSam output Processor
Prelude Hybrid IDS Prelude IDS is a modular hybrid intrusion detection system, available under the GNU GPL licence. An interesting feature of Prelude is the IDMEF-based messaging system allowing exchange of alerts between the components of the system. The design of the messaging system allows integration with third-party applications by making them capable of sending alerts in the common format using the libprelude library. This provides the capability of centralized processing and logging of alerts emmited by various sensors, both host- and network based.
RazorBack a log analysis program that interfaces with the SNORT
Snot Triggers snort alerts taking a snort rules file as input. Use to decoy your local IDS admin
SnortCenter : web-based client-server management system written in PHP and Perl
Alert notification via e-mail, sound or only visual notification
Alert file monitoring (up to 10 files)
MySQL alert detection
Log rotation (compressed archiving of log files)
AutoBlock (using NetworkICE BlackICE Defender you can block attackers IP's that Snort logged)
Integrated log viewer (supports text files, XML and HTML/webpages)
Program execution if an attack was detected
Test configuration feature: fast testing of your IDS configuration
SnortSnarf Perl program to take files of alerts from the free Snort Intrusion Detection System , and produce HTML output intended for diagnostic inspection and tracking down problems.