Name: Astraeus Purpose: Web-Based Sensor Control and Data Analyzer for Snort IDS Updated: June 8, 2010 Category: Software

Astraeus is intended to provide complete control and analysis for a Snort IDS environment. Some of the features currently in development are:

• customizable dashboard
• event correlation (nessus, openvas, foundstone, etc)
• live events (graphs, stats, etc)
• multiple sensor support
• top events based on user settings
• multiple user accounts with different levels of access
• SQL command entry
• event search and browse capabilities
• customized email notifications
• cvs, pdf, text exports
• signature management
• full packet support with session rebuilding
• case management
• database connection encryption
• sensor stop/start
• sensor statistics and db usage

The software is written using PHP. The following databases are supported (via PDO):

• PostgreSQL 8.x
• IBM DB2 9.x
• Oracle 10g / 11g
• MySQL 5.x

Currently in development, with a beta release set for late-2010.