Snort

Snort is a free, open source, packet sniffing, protocol analyzing, intrusion detection engine that can be used for both network IDS (intrusion detection system) and IPS (intrusion prevention system) and can be linked to a variety of analysis front end interfaces. It runs on both linux and windows. Snort rules establish the parameters for packet inspection and can be easily modified or custom rules can be developed. A wide variety of snort community support resources and books are available.

Snort – [snort.org]

Snort® is an open source network intrusion prevention and detection system (IDS/IPS) developed by Sourcefire. Combining the benefits of signature, protocol and anomaly-based inspection, Snort is the most widely deployed IDS/IPS technology worldwide. With millions of downloads and over 250,000 registered users, Snort has become the de facto standard for IPS

Snort Documents – [snort.org]

Snort Official Documentation
The official documentation produced by the Snort team at Sourcefire
Snort Users Manual
Snort FAQ

Documentation Links
Download Snort
Download Rules
White Papers
Snort Webinars
Setup Guides
User Translated Guides
Development Papers
Deployment Guides
Snort Books
Snort Calendar

Leave a Reply

You must be logged in to post a comment.