Over at his weblog node5, William Metcalf has written about a nice script he created for automagically extracting full content data for certain ip’s and ip ranges from large amounts of pcap data. It will also create some nice output for the data. Check out his post at node5 and the script here at bleedingthreats. Great to see you blogging Will! 
Finally, after many months of development and testing, Snort_inline 2.6.1.5 has been released. It’s the first stable release in almost a year and also the first stable release based on Snort 2.6. William sent the announcement:
snort_inline-2.6.1.5 released
List, I know it has been a long time since we have had a non-beta release, but what can I say? Victor and I have both been busy in our personal and professional lives. If you have been running the version of code in SVN, there are no major updates with this release other than a memleak fix for stream4inline. I don't think this gets said often enough, so I would like to thank Sourcefire for all the hard work they put into snort and the snort rule sets for which I and the rest of the community greatly benefit. Regards, Will snort_inline-2.6.1.5 http://snort-inline.sourceforge.net/download.html Differences between snort in inline mode and snort_inline http://www.inliniac.net/blog/?p=74
Go and get it!