Localized pages: French German Japanese
Need more info? CONTACT US
Products

Sourcefire Vulnerability Research Team™ (VRT)

Stopping Attacks in Their Tracks

The Sourcefire Vulnerability Research Team (VRT) is a group of leading edge network security experts working around the clock to proactively discover, assess and respond to the latest trends in hacking activities, intrusion attempts and vulnerabilities. Some of the most renowned security professionals in the industry, including the authors of several standard security reference books, are members of the Sourcefire® VRT. This team is also supported by the vast resources of the open source Snort® community, making it the largest group dedicated to vulnerability reasearch and advances in the network security industry.

The Sourcefire VRT is dedicated to protecting Sourcefire customers and Snort users by verifiably defending against:

  • all possible attacks against vulnerabilities,
  • before specific exploits proliferate in the wild, while
  • minimizing false positives and eliminating false negatives.

Rather than traditional exploit-based signatures, which provide little protection against unknown or zero-day threats, the Sourcefire VRT develops vulnerability-based rules for protection against emerging exploits before they are in the wild.

Validated by a proven track record, the Sourcefire VRT has protected customers in advance of every significant outbreak of malware, including Conficker, Netsky, Nachi, Blaster, Sasser, Zotob and many more, without the need for further updates to detect new variants.

The Sourcefire Vulnerability Research Team:

  • Leads the IDS/IPS industry in delivering rules that provide same day protection for critical Microsoft Tuesday vulnerabilities.
  • Develops the official Snort rules used by the Sourcefire 3D® System.
  • Maintains a community rule set that contains rules submitted by members of the open source community and tested by the VRT to ensure they work using the latest version of Snort.

For more information on how to obtain these rules, visit snort.org/vrt.
For the latest Sourcefire VRT advisories click here.
Catch the latest news from the Sourcefire VRT on their official blog page here.
To learn more about the Sourcefire VRT Rule Methodology and process for writing, testing and publishing new rules, download the Sourcefire Vulnerability Research Team white paper.

Snort Links
Quotes

"By writing to the vulnerability rather than the exploit, we provided our customers with zero-day protection against animated cursor exploits more than two years in advance of Microsoft's Security Advisory."

- Matt Watchinski, Director, Sourcefire VRT

resources

Sourcefire VRT - Oct09 Vulnerability Report Sourcefire VRT Presents: Monthly Vulnerability Reports

View the latest here >

Sourcefire Extending Snort Technology Brief Sourcefire Technology Brief
Extending Your Investment in Snort
Download >