sancp-1.6.1_6.txz


Advertisement

Description

sancp - Network connection profiler

Property Value
Distribution FreeBSD 12
Repository FreeBSD Ports Latest amd64
Package filename sancp-1.6.1_6.txz
Package name sancp
Package version 1.6.1
Package release 6
Package architecture amd64
Package type txz
Category security
Homepage http://www.metre.net/sancp.html
License QPLv1
Maintainer bofh@FreeBSD.org
Download size 50.16 KB
Installed size 181.62 KB
Sancp is a network security tool designed to collect
statistical information regarding network traffic, as
well as, collect the traffic itself in pcap format, all
for the purpose of: auditing, historical analysis, and
network activity discovery. Rules can be used to distinguish
normal from abnormal traffic and support tagging connections
with: rule id, node id, and status id.  From an intrusion
detection standpoint, every connection is an event that must
be validated through some means. Sancp uses rules to identify,
record, and tag traffic of interest. 'Tagging' a connection
is a new feature since v1.4.0 Connections ('stats') can be
loaded into a database for further analysis.
WWW: http://www.metre.net/sancp.html
Groups: sancp
Options:
- DOCS: on
***********************************
* !!!!!!!!!!! WARNING !!!!!!!!!!! *
***********************************
A startup script was installed in /usr/local/etc/rc.d/.  Enable the script
in /etc/rc.conf using the usual rc.subr syntax.  See rc.conf(5) or go to
http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/configtuning-rcng.html
Configuration files named sancp.conf.sample and sancp.conf
were installed in /usr/local/etc.  See the INSTALL doc, located in
/usr/local/share/doc/sancp/ for details on configuration
options or type "sancp -h" on the commandline.
Note that if you are installing sancp for use with sguil, you should use the
the one that came with sguil in /usr/local/etc/sguil-sensor directory.
If you're running sguil, you probably want to use at least the following flags:
sancp_flags="-D -P -R -u sancp -g sancp -d /var/log/sancp -c /usr/local/etc/sguil-sensor/sancp.conf"

Alternatives

Package Version Architecture Repository
sancp-1.6.1_6.txz 1.6.1 i386 FreeBSD Ports Quarterly
sancp-1.6.1_6.txz 1.6.1 amd64 FreeBSD Ports Quarterly
sancp-1.6.1_6.txz 1.6.1 i386 FreeBSD Ports Latest
sancp - - -

Download

Type URL
Mirror pkg.freebsd.org
Binary Package sancp-1.6.1_6.txz
Source Package security/sancp

Install Howto

Install sancp txz package:

# pkg install sancp

See Also

Package Description
sandsifter-1.04.txz Processor fuzzer for x86 CPUs
sane-backends-1.0.27_5.txz API for access to scanners, digitals camera, frame grabbers etc
sane-frontends-1.0.14_10.txz Tools for access to scanners, digitals camera, frame grabbers etc
sanoid-2.0.1_2.txz Policy-driven snapshot management and replication tools
sanoid-devel-1.0.0.20190619_2.txz Policy-driven snapshot management and replication tools
sansi-1.0.2.txz Removes ANSI control sequences/characters, from files
saoimage-1.35.1_2.txz Smithsonian Astrophysical Observatory image utility for X
sarep-1.1.txz Command-line search and replace tool; written in Perl; handles regexps
sarg-2.3.11.txz Squid log analyzer and HTML report generator
sarien-0.7.0_3.txz Sierra AGI games interpreter
sary-1.2.0_5.txz Suffix array library and tools, which provide fast full-text search
sash-3.8.txz Stand-Alone shell combining many common utilities
sasp-0.1_4.txz Tool that permits to use a gateway whatever IP we have
sassc-3.6.0_1.txz Wrapper around libsass
sat-libreoffice-6.3.2.txz sat language pack for libreoffice
Advertisement
Advertisement