Sourcefire’s Razorback platform unites existing security tools, including IDS/IPSes. It’s basically a framework that overlays the existing security infrastructure and lets the various tools work more in concert. Razorback’s “dispatcher” system can get a second opinion by routing the file to other security tools designated to check PDFs. It handles detection in near real-time and can convert newly found intelligence on an attack into a detection mechanism for it. Sourcefire: Razorback was inspired, in part, by defense contractors who regularly face persistent threats.”]
Source: https://www.darkreading.com/attacks-breaches/sourcefire-rolls-out-open-source-razorback-