Snare Central v8.6.3 was released on 24th March 2025.

Snare Central incorporates Reflector v3.2.1, Snare Agent Manager (SAM) v2.0.3, and Snare Enterprise Agent for Linux v5.8.1.

If the threat intelligence component is active, version 6.8.7 of ElasticSearch is activated.

The following licensed components are available:

Snare Management Center (SMC)
Snare Management Center Client (SMC)
Agent Management Console (AMC)
Snare Advanced Analytics (SAA)
Cloud Logs Collection:
- Office 365 Logs Collection
- Amazon Web Services Log Collection
- Oracle Cloud Log Collection

After upgrading to Snare Central v8.6.3, please reboot the server to apply kernel changes, as advised by Ubuntu.

Overview

Snare Central version 8.6.3 is a patch release that includes updated system packages, security patches, minor enhancements and bug fixes.

Please refer also to Release Notes for Snare Agent Manager (SAM) v2.0.1 , v2.0.2 and v2.0.3 included in this release.

Compatibility Note

Snare Agent Management v2.0.3 included in this version of Snare Central is compatible with the following versions of Snare Agent.

SAM v2 Feature	Supported Snare Agent Versions
Agent Configuration Management (New)	5.8.0 or newer
Agent License Management	5.5.0 or newer
Remote Agent Upgrade	5.5.0 or newer
Agents Discovery using Network Scan	5.4.0 or newer

Please upgrade the Snare Agents to the latest version BEFORE upgrading the Snare Central, if you are using these features of SAM.

Features and Enhancements

Event Search:
- Added Exact Match checkbox on the Basic Event Search screen for improved control of the desired search method. When Exact Match checkbox is selected, the search results will contain event logs where a field value exactly matches the entered string.
- Default search method was changed to case insensitive substring search (REGEXI).
- Information icon was added near the Exact Search checkbox, providing details on search options and their performance rating.

Improvements to the Update process, including stopping all running reports before start, disabling debugging if enabled, rotating snare.log
Introduced a method to apply the Snare Central version update from the Administration Menu without access to Web UI. See User Guide > Appendix E - Snare Central Update from the Administration Menu for details.
Fixed false positive support data retrieval already running detection
Removed unused checkbox in "Network Services" section in the "Configuration Wizard"
Listed up-to date list of groups assigned to the logged-in user during dashboard creation

Security

System packages updated to mitigate security vulnerabilities.

After upgrading to Snare Central v8.6.3, please reboot the server to apply kernel changes, as advised by Ubuntu.
Removed product version exposed to unauthenticated user accessing via SSH

Bug Fixes

Resolved LDAP bug that prevented the correct retrieval of Snare_Central groups
Fixed a defect where the Snare Central update status could be out of date if an account logout was triggered during the software update
Fixed a race condition during version upgrade that could cause an error accessing web pages
Reset self-signed certificate for SAM UI and SAM Agent in Snare Central if the certificates have expired
Full removal of residual OpenVAS-related tasks
Fixed a typo in the error message for disk unmounting
Removed the unexpected error message raised by the dpkg command during Fresh Install

User Guides

Offline version of the User Guide related to this release

Installation Guide for Snare Central

Browser not supported