Announcing Allthreats

> Hi,
>
> I think this can cause some information leaking for companies, where the admin does not understand the content of a sniffer file and/or sensibility of the sniffed traffic is underestimated. What will happen with the uploaded files?
> Anyway home users can have huge advantages of that tool, if they know what they submit ;-).
>
> Cheers,
> Akos
>
> -----Ursprüngliche Nachricht-----
> Von: listbounce@... [mailto:listbounce@...] Im Auftrag von Ismael Briones
> Gesendet: Dienstag, 23. Juni 2009 18:00
> An: focus-ids@...
> Betreff: Announcing Allthreats
>
> I would like to announce the www.allthreats.com.
>
> Allthreats is a free online network traffic analyzer. This system is
> able to analyze a pcap file with several tools: IDS (only Snort at the
> moment [Sourcefire VRT and Emerging Threats signatures], I'll integrate
> Bro IDS soon), Honeysnap (from honeynet project. It's able to analyze
> HTTP, FTP and SMTP traffic, extract files from the pcap and analyze them
> with several antivirus engines [by now: Clamav, Bitdefender and Avira] ).
>
> See the demo
> (http://www.allthreats.com/upload/7c/bb/2c/32/86/3a/b2/81/91/3a/9e/ad/be/9c/6e/83/f3/3e/72/e2//7cbb2c32863ab281913a9eadbe9c6e83f33e72e2.html)
> for a comprehensive overview of the capabilities of Allthreats.
>
> This service can analyze binaries with several AV engines (like other
> well-knonwn online services), nevertheless it adds a new functionality:
> Remote File Analyzer (URL Analyzer). You don't have  to download the
> binary, we download it for you.
>
> I would like to add more IDS and antivirus engines, so if you're
> interested in add your AV or IDS engine, please send me an email:
> engines@...
>
> Ismael
> Lead Developer Allthreats
>
>
>
>
>  

> Hi,
>
> I think this can cause some information leaking for companies, where the admin does not understand the content of a sniffer file and/or sensibility of the sniffed traffic is underestimated. What will happen with the uploaded files?
> Anyway home users can have huge advantages of that tool, if they know what they submit ;-).
>
> Cheers,
> Akos
>
> -----Ursprüngliche Nachricht-----
> Von: listbounce@... [mailto:listbounce@...] Im Auftrag von Ismael Briones
> Gesendet: Dienstag, 23. Juni 2009 18:00
> An: focus-ids@...
> Betreff: Announcing Allthreats
>
> I would like to announce the www.allthreats.com.
>
> Allthreats is a free online network traffic analyzer. This system is
> able to analyze a pcap file with several tools: IDS (only Snort at the
> moment [Sourcefire VRT and Emerging Threats signatures], I'll integrate
> Bro IDS soon), Honeysnap (from honeynet project. It's able to analyze
> HTTP, FTP and SMTP traffic, extract files from the pcap and analyze them
> with several antivirus engines [by now: Clamav, Bitdefender and Avira] ).
>
> See the demo
> (http://www.allthreats.com/upload/7c/bb/2c/32/86/3a/b2/81/91/3a/9e/ad/be/9c/6e/83/f3/3e/72/e2//7cbb2c32863ab281913a9eadbe9c6e83f33e72e2.html)
> for a comprehensive overview of the capabilities of Allthreats.
>
> This service can analyze binaries with several AV engines (like other
> well-knonwn online services), nevertheless it adds a new functionality:
> Remote File Analyzer (URL Analyzer). You don't have  to download the
> binary, we download it for you.
>
> I would like to add more IDS and antivirus engines, so if you're
> interested in add your AV or IDS engine, please send me an email:
> engines@...
>
> Ismael
> Lead Developer Allthreats
>
>
>
>
>  

> I would like to announce the www.allthreats.com.
>
> Allthreats is a free online network traffic analyzer. This system is
> able to analyze a pcap file with several tools: IDS (only Snort at the
> moment [Sourcefire VRT and Emerging Threats signatures], I’ll integrate
> Bro IDS soon), Honeysnap (from honeynet project. It’s able to analyze
> HTTP, FTP and SMTP traffic, extract files from the pcap and analyze them
> with several antivirus engines [by now: Clamav, Bitdefender and Avira] ).
>
> See the demo
> (http://www.allthreats.com/upload/7c/bb/2c/32/86/3a/b2/81/91/3a/9e/ad/be/9c/6e/83/f3/3e/72/e2//7cbb2c32863ab281913a9eadbe9c6e83f33e72e2.html)
> for a comprehensive overview of the capabilities of Allthreats.
>
> This service can analyze binaries with several AV engines (like other
> well-knonwn online services), nevertheless it adds a new functionality:
> Remote File Analyzer (URL Analyzer). You don’t have  to download the
> binary, we download it for you.
>
> I would like to add more IDS and antivirus engines, so if you’re
> interested in add your AV or IDS engine, please send me an email:
> engines@...
>
> Ismael
> Lead Developer Allthreats
>
>
>

> That is still a risky proposition without SLAs, third-party review, etc. I think Akos' point remains that, like many other web tools, you increase the risk leaking information to an unknown party.
>
> But it's a great start and like many other web tools (say CWSandBox) it will find a place. Best wishes, -Ali
>
> -----Original Message-----
> From: listbounce@... [mailto:listbounce@...] On Behalf Of Ismael Briones
> Sent: Wednesday, June 24, 2009 3:31 PM
> To: Daniel, Akos
> Cc: focus-ids@...
> Subject: Re: AW: Announcing Allthreats
>
> Hi,
>
>     Actually the files (pcap files) are encrypted and stored in the
> server. We'll store it for statistical reasons.
>
> The next step will allow a complete manage of the pcap files if you're a
> registered user.
>
> Thank you,
> Ismael
>
> Daniel, Akos wrote:
>  
>> Hi,
>>
>> I think this can cause some information leaking for companies, where the admin does not understand the content of a sniffer file and/or sensibility of the sniffed traffic is underestimated. What will happen with the uploaded files?
>> Anyway home users can have huge advantages of that tool, if they know what they submit ;-).
>>
>> Cheers,
>> Akos
>>
>> -----Ursprüngliche Nachricht-----
>> Von: listbounce@... [mailto:listbounce@...] Im Auftrag von Ismael Briones
>> Gesendet: Dienstag, 23. Juni 2009 18:00
>> An: focus-ids@...
>> Betreff: Announcing Allthreats
>>
>> I would like to announce the www.allthreats.com.
>>
>> Allthreats is a free online network traffic analyzer. This system is
>> able to analyze a pcap file with several tools: IDS (only Snort at the
>> moment [Sourcefire VRT and Emerging Threats signatures], I'll integrate
>> Bro IDS soon), Honeysnap (from honeynet project. It's able to analyze
>> HTTP, FTP and SMTP traffic, extract files from the pcap and analyze them
>> with several antivirus engines [by now: Clamav, Bitdefender and Avira] ).
>>
>> See the demo
>> (http://www.allthreats.com/upload/7c/bb/2c/32/86/3a/b2/81/91/3a/9e/ad/be/9c/6e/83/f3/3e/72/e2//7cbb2c32863ab281913a9eadbe9c6e83f33e72e2.html)
>> for a comprehensive overview of the capabilities of Allthreats.
>>
>> This service can analyze binaries with several AV engines (like other
>> well-knonwn online services), nevertheless it adds a new functionality:
>> Remote File Analyzer (URL Analyzer). You don't have  to download the
>> binary, we download it for you.
>>
>> I would like to add more IDS and antivirus engines, so if you're
>> interested in add your AV or IDS engine, please send me an email:
>> engines@...
>>
>> Ismael
>> Lead Developer Allthreats
>>
>>
>>
>>
>>  
>>    
>
>
>
>
> -----------------------------------------------------------------
> Securing Your Online Data Transfer with SSL.
> A guide to understanding SSL certificates, how they operate and their application. By making use of an SSL certificate on your web server, you can securely collect sensitive information online, and increase business by giving your customers confidence that their transactions are safe.
> http://www.dinclinx.com/Redirect.aspx?36;5001;25;1371;0;1;946;9a80e04e1a17f194
>
>
>