Firestorm is an extremely high performance network intrusion detection system (NIDS). At the moment it is just a sensor but plans are to include real support for analysis, reporting, remote console and on-the-fly sensor configuration. It is fully pluggable and hence extremely flexible.
At the moment Firestorm is still in early development, but a lot of the features you would expect of a sensor are already there.
This guide aims to help you configure and use the Firestorm intrusion detection system. It is the official and definitive source of Firestorm documentation. Accept no substitutes!
Firestorm source code and pre-compiled binaries are available as free software (under the GNU GPL) and can be downloaded from:
Source Code:
http://www.scaramanga.co.uk/firestorm/vX.Y.Z/firestorm-X.Y.Z.tar.gz
Source RPM:
http://www.scaramanga.co.uk/firestorm/vX.Y.Z/firestorm-X.Y.Z-1.src.rpm
i386 RPM (for Linux on PCs):
http://www.scaramanga.co.uk/firestorm/vX.Y.Z/firestorm-X.Y.Z-1.i386.rpm
PowerPC RPM (for Linux on power-macintosh)
http://www.scaramanga.co.uk/firestorm/vX.Y.Z/firestorm-X.Y.Z-1.ppc.rpm