Free Network Intrusion Detection & Prevention System for Windows PC

Snort

Snort 2.9.11

  -  3.1 MB  -  Open Source
  • Latest Version

    Snort 3.5.2.0

  • Operating System

    Windows XP / Vista / Windows 7 / Windows 8 / Windows 10

  • User Rating

    Click to vote
  • Author / Product

    Cisco Systems, Inc. / External Link

  • Filename

    Snort_2_9_11_Installer.exe

  • MD5 Checksum

    0c747a5220bdc6fd7dbcaee9ef9e7e78

Sometimes latest versions of the software can cause issues when installed on older devices or devices running an older version of the operating system.

Software makers usually fix these issues but it can take them some time. What you can do in the meantime is to download and install an older version of Snort 2.9.11.


For those interested in downloading the most recent release of Snort or reading our review, simply click here.


All old versions distributed on our website are completely virus-free and available for download at no cost.


We would love to hear from you

If you have any questions or ideas that you want to share with us - head over to our Contact page and let us know. We value your feedback!

What's new in this version:

New:
- Changes to eliminate Snort restart when there are changes to the memory allocated for preprocessors, by releasing unused or least recently used memory when needed
- Added support for storing filenames in Unicode for SMB protocol
- Added implementation of hostPortCache versioning for unknown flows in AppID to detect and block BitTorrent

Improvements:
- Enhanced RTSP metadata parsing to match the user-agent field to detect RTSP traffic over Windows Media
- Performance improvement when SYN rate limit has reached and drop is configured as next actio
- Control-socket and side-channel support for FreeBSD platform
- Fixed issue in file signature lookup for retransmitted FTP packet
- Enhanced the processing of SIP/RTP future flows without ignoring them
- Changes made in PDF/SWF decompression by adding boundary to the size of the decompressed data
- Added a null check to prevent copy unless debugHostIp is configured in AppId
- Fixed issue where FTP file type block doesn't work for retried download
- Resolved issue where Snort is inappropriately handling traffic for which AppId was creating future flow
- Performance improvements for SIP/RTP audio and video data flow in AppId
- Performance and stability improvements in FTP preprocessor like incorrect referencing of ftp_data_session after its pruned
- Stability improvement by resolving valgrind reported issues in AppId
- Improved flushing mechanism for HTTP POST header
- Added changes to display AppId for IPv6 unified events
- Fixed issues with printing of messages for out-of-order packets
- Fixed issue in increment of detection filter counter when rule is used in multiple configurations
- Fixed dynamic preprocessor compilation failure in OpenBSD platform
- Added changes to improve performance of ipvar list comparison
- Enhanced SMTP client detection by allowing line folding and all authentication methods