Our team is excited to share the latest news and features of Slips, our behavioral-based machine learning intrusion detection system.

Quick links:

What We Are Particularly Excited About

In this release we are particularly excited about these new Slips features:

- Add more descriptive titles to VT scores in the web UI thanks to @shubhangi.

- Add stratoletters documentation, thanks to @haleelsada.

- Add the detection of GRE tunnels.

- Auto publish our MacOS Docker image when there's a new release, thanks to @pjflux2001

- Detect malicious JARM hashes when there's a C&C alert and add our own malicious JARM hashes TI file.

- Fix error getting IP confidence in P2P module.

- Fix false positive alerts about "connection to private IP" thanks to @Onyx2406.

- Fix problem killing all modules before the TI module stops.

- Fix problem detecting vertical and horizontal port scans.

- Improved CLI progress bar and status updates.

- Keep a history of the past user-agents by @haleelsada.

- More descriptive evidence.

- Refactor code thanks to @danieltherealyang.

- Update Slips default whitelist.

- Web UI highlighting, new icons, and bug fixes.

Check the full list of changes in our release page: https://github.com/stratosphereips/StratosphereLinuxIPS/releases/tag/v1.0.4

Learn more!

Wondering what Slips is capable of? Check out these demo presentations:

For those interested in contributing to Slips:

Feel free to join our Discord server and ask questions, suggest new features or give us feedback. PRs and Issues are welcomed in our repo.