Sourcefire Rolls Out Open-Source ‘Razorback’

Sourcefire Rolls Out Open-Source ‘Razorback’ The makers of the popular open-source Snort intrusion detection platform today unveiled a new open-source platform — a detection framework that unites existing security tools, including IDS/IPSes. The new Razorback platform developed by Sourcefire is basically a tool for tying together the various layers of detection within an organization, including antivirus, IDS/IPS, Web and email gateways, and firewalls, to use in concert to catch and examine potential threats and create mitigations on the fly. Its creators say it’s not the same thing as a security information management tool, however, because it does more than capture events: “SIM collects events in a vacuum: It takes an AV event and says this host is infected by a virus …