Sourcefire is 100% dedicated to cybersecurity technologies. Trusted for more than a decade, Sourcefire epitomizes security innovation, intelligence and agile end-to-end protection. With solutions from a next-generation network security platform to advanced malware protection, Sourcefire provides customers with Agile Security® that is as dynamic as the real world it protects and the attackers against which it defends. But don’t just take our word for it, here’s proof from the industry:

Sourcefire offers a next-generation security platform that can be deployed based on customers' unique needs:

Sourcefire Next-Generation IPS (NGIPS): Sets a new standard for advanced threat protection, integrating real-time contextual awareness, intelligent security automation, and unprecedented performance with industry-leading network intrusion prevention. 

Sourcefire NGIPS with Application Control and URL Filtering: The NGIPS solution can be further expanded with an optional Control License to add granular application control and URL filtering.

Sourcefire Next-Generation Firewall (NGFW): Includes the world’s most powerful NGIPS, granular application control, and advanced firewall functionality in a universal, high-performance security appliance.

Sourcefire offers advanced malware protection that discovers, analyzes and blocks malware by utilizing Big Data analytics:

Advanced Malware Protection for FirePOWER™: A comprehensive malware-defeating solution that enables malware detection/blocking, continuous analysis and retrospective alerting and leverages Sourcefire's vast cloud security intelligence. Available via a subscription add-on to FirePOWER appliances, simply software-enable these additional protections when you're ready - no need for additional hardware. 

Advanced Malware Protection (AMP) Appliance: A dedicated appliance specifically for organizations needing to focus on immediate protection against advanced malware. Deployed inline, the AMP appliance delivers network protection against advanced malware with malware detection/blocking, continuous file analysis and retrospective security. 

FireAMP™: The only solution that provides the visibility and control needed to stop threats missed by other security layers. FireAMP is an intelligent, enterprise-class advanced malware analysis and protection solution for endpoints that uses big data to discover, understand and block advanced malware outbreaks. FireAMP answers questions like: “Where did the attack start?”, “Where and how did it spread?”, “How can it be controlled?”

FireAMP Virtual: Gain the real-time visibility and control you need to secure against advanced malware targeting virtual machines. FireAMP Virtual is one of the first virtual security products to use big data analytics for increased security intelligence across virtual environments.

FireAMP Mobile: One of the first mobile device security products that identifies and remediates advanced malware using big data analytics. FireAMP Mobile delivers real-time visibility and control to secure against threats targeting mobile devices and protect corporate assets.

Sourcefire’s security portfolio also includes the following industry-leading offerings:

Sourcefire Defense Center®: Centrally manage hundreds of appliances and analyze events, automate threat prevention updates, configure policies, and generate reports and custom dashboards.

FireSIGHT®: An innovative technology built into the Sourcefire next-generation network security platform—NGIPS, NGIPS with Application Control, and NGFW—to provide the network visibility, “context” and automation required to respond to changing conditions and new attacks.

FirePOWER: A unique hardware acceleration technology that supports Sourcefire next-generation network security platforms with unmatched performance and energy efficiency on a universal security architecture.

Sourcefire VRT® (Vulnerability Research Team): A group of elite security experts that maintain the open source community rule set, develop the official Snort rules used by the Sourcefire NGIPS and NGFW solutions, and support FireAMP’s file analysis of malware behavior.

Snort®: Created in 1998 by Martin Roesch, Sourcefire’s founder and CTO, Snort is the most widely deployed intrusion detection and prevention technology in the world and is the rules engine used by Sourcefire network security solutions.

Latest VRT Advisory

Nov 15, 2011
Multiple Rule Additions and Modifications

This release adds and modifies rules in several categories.

The Sourcefire VRT has added and modified multiple rules in the bad-traffic, blacklist, botnet-cnc, chat, dns, dos, exploit, file-identify, misc, oracle, policy, smtp, specific-threats, web-activex and web-misc rule sets to provide coverage for emerging threats from these technologies.

COLLAPSE FOOTER