Sponsored White Papers, Webcasts, and Downloads
TechRepublic Resources
- Detect intruders on your network with Snort
- Snort is a Network Intrusion Detection System NIDS, which can view and analyze packets on a network to determine whether or not a system is being attacked by remote. Most Linux distributions come with Snort, so it's simply a matter of installing Snort via urpmi, apt-get, or yum. Snort can...
- Tags: Snort, Network, Rule, Community Rule, Linux, Intrusion Detection, Open Source, UNIX, Operating Systems, Security, Software, Vincent Danen
- Blog posts 2008-03-17
- Configure Snort to log packets to MySQL
- Last week, we looked at setting up Snort, a Network Intrusion Detection System. Now we will look at configuring Snort to log packets to a remote MySQL server where a graphical Web interface can be used to view captured packets and statistics. To begin with, on the...
- Tags: Snort, MySQL, Open Source, Databases, Enterprise Software, Software, Data Management, Vincent Danen
- Blog posts 2008-03-21
- Design Alternatives for a High-Performance Self-Securing Ethernet Network Interface
- This paper presents and evaluates a strategy for integrating the Snort network intrusion detection system into a high-performance programmable Ethernet Network Interface Card NIC, considering the impact of several possible hardware and software design choices. While currently proposed ASIC, FPGA, and TCAM systems can match incoming string content in real-time,...
- Tags: Snort, High-performance, Ethernet, Leadership, ASICs, Intrusion Detection, Networking, Management, Semiconductors, Hardware, Security
- White papers 2007-01-26
- Applying Fast String Matching to Intrusion Detection
- The performance of signature-based network intrusion detection tools is dominated by the string matching of packets against many signatures. This paper studies how the popular intrusion detection system Snort can be best optimized to utilize different string matching algorithms. The paper analyzes the performance of Snort's current string matching algorithm,...
- Tags: Algorithm, Snort, Engineering, Intrusion Detection, Security
- White papers 2008-01-01
- Compiling PCRE to FPGA for Accelerating SNORT IDS
- Deep Payload Inspection systems like SNORT and BRO utilize regular expression for their rules due to their high expressibility and compactness. The SNORT IDS system uses the PCRE Engine for regular expression matching on the payload. The software based PCRE Engine utilizes an NFA engine based on certain opcodes which...
- Tags: Snort, FPGA, Tools & Techniques, Development Tools, Management, Software Development, Software/Web Development
- White papers 2007-12-04
- Snort (gz)
- Snort is an open source network intrusion prevention and detection system utilizing a rule-driven language, which combines the benefits of signature, protocol and anomaly based inspection methods. With millions of downloads to date, Snort is the most widely deployed intrusion detection and prevention technology worldwide and has become the de...
- Tags: Sourcefire Inc., Snort, Intrusion Prevention, Security
- Software downloads 2007-04-28
- Firekeeper (xpi)
- Firekeeper is an Intrusion Detection and Prevention System for Firefox. It is able to detect, block and warn the user about malicious sites. Firekeeper uses flexible rules similar to Snort ones to describe browser based attack attempts. Rules can also be used to effectively filter different kinds of unwanted content....
- Tags: Response, Mozilla Firefox, Snort, Mozilla Corp., Firekeeper, Web Browsers, Intrusion Detection, Internet, Security
- Software downloads 2007-03-08
- Real-Time Multistage Attack Awareness Through Enhanced Intrusion Alert Clustering
- Correlation and fusion of intrusion alerts to provide effective Situation Awareness of cyber-attacks has become an active area of research. Snort is the most widely deployed intrusion detection sensor. For many networks and their system administrators, the alerts generated by Snort are the primary indicators of network misuse and attacker...
- Tags: Snort, Clustering, University At Buffalo, Intrusion, Intrusion Detection, Network Security, Security, Viruses And Worms, Networking
- White papers 2007-12-01
- Managing Badware and Policy Violation With Aanval and Bleeding Edge Threat Snort Rules
- Badware, Instant Messaging IM, and Peer-to-Peer (P2P) apps, are prominent issues facing those with the task of securing enterprise computing environments. The risks are plentiful, including potential loss of confidential data, Trojans, and rootkits. The focus this month will detail the effort to manage those risks on ones network using...
- Tags: Risk, Snort, P2P, Information Systems Security Association, Peer To Peer (P2P), Rootkits, Risk & Compliance, Strategy, Security, Internet, Spyware, Adware & Malware, Management
- White papers 2007-03-01
- Snort Management System: Managing Multiple Snort Instances on Many Systems
- The snort management system enables engineers to efficiently manage and deploy small and/or large production snort environments. This system employs the open-source WebJob framework and several other open-source technologies including: oinkmaster, rsync, snort, and ssh. The system is designed to minimize the workload involved in managing the snort rules and...
- Tags: Snort, Open Source
- White papers 2006-10-11
- Sourcefire acquires ClamAV
- Sourcefire has announced its acquisition of the open-source ClamAV gateway antivirus and antimalware project. It appears that the deal includes all related trademarks and copyrights held by the five principal members of the open-source AV team, including project founder Tomasz Kojm. Martin Roesch, Sourcefire's...
- Tags: Sourcefire Inc., Snort, Antivirus, Open Source, Viruses And Worms, Security, Paul Mah
- Blog posts 2007-08-21
- Secure your network for free with Snort
- In this chapter download from How to Cheat at Configuring Open Source Security Tools, gain a practical understanding of the open-source IDS known as Snort and how it can help you with your network security concerns. Learn about the history of Snort, how the Snort architecture works, and its system...
- Tags: Snort, Network, Chapter Coverage, Networking, Security
- Book chapters 2007-08-08
- Distinguishing False From True Alerts in Snort by Data Mining Patterns of Alerts
- The Snort network intrusion detection system is well known for triggering large numbers of false alerts. In addition, it usually only warns of a potential attack without stating what kind of attack it might be. This paper presents a clustering approach for handling Snort alerts more effectively. Central to this...
- Tags: Snort, Clustering, Data Mining, Alert, XML, Security, Software/Web Development, Web Development
- White papers 2006-01-12
- Defend the network layer from malicious attack
- The network layer is key to the operation of the stack. In this sample chapter from Hack the Stack: Using Snort and Ethereal to Master the 8 Layers of an Insecure Network, begin by reviewing the protocols that reside here, such as Internet Protocol IP, Internet Control...
- Tags: Snort, Network, Malicious Attack, Chapter Coverage, Networking
- Book chapters 2007-06-22
- Manage Snort intrusion detection logs with Log Parser
- Snort is an open-source intrusion detection system IDS used in a wide variety of network environments. It is a lightweight but extremely powerful tool for detecting malicious traffic on your network. However, Snort users quickly learn that reporting is not its strength, and an intrusion detection system is...
- Tags: Snort, Intrusion Detection System, Chapter Coverage, Intrusion Detection, Network Security, Security, Networking
- Book chapters 2007-06-08
- Context-Based Intrusion Detection Using Snort, Nessus and Bugtraq Databases
- Intrusion Detection Systems IDS use different techniques to reduce the number of false positives they generate. Simple network context information such as the communication session state has been added in IDS signatures to only raise alarms in the proper context. However, this is often not sufficient and more network context...
- Tags: Snort, Network, Intrusion Detection System, BugTraq, Signature, Correlation Mechanism, Intrusion Detection, Network Security, Security, Networking
- White papers 2005-07-28
- Serial Snort (zip)
- Serial Snort is written to facilitate the reverse engineering of some equipment. It is down and dirty, but will get the job done. It will generate a log file, and comments can be inserted as you go. Will be updated time to time.
- Tags: Snort, Recruitment & Selection, Human Resources, Workforce Management
- Software downloads 2007-04-19
- The Snort Network Intrusion Detection System on the Intel IXP2400 Network Processor
- This paper describes an implementation of the Snort Network Intrusion Detection System Snort NIDS on the Intel IXP2400 processor. The Intel IXP2400 network processor was selected to achieve line rates in excess of 2.5 gigabits per second for the Snort NIDS, compared to less than 1 gigabit per second for...
- Tags: Network Intrusion Detection System, Snort, Intrusion Detection System, Gigabit, Intel Corp., Consystant, Intrusion Detection, Security, Network Security, Processors, Networking, Semiconductors, Hardware, Components
- White papers 2003-02-13
- Multicast setting for network sniffer
- I have a Linksys WRT54GL router upgraded to the DD-WRT firmware. I need a sniffer program and/or router setting that will capture all PC on the net, not just the one the sniffer is running on.you want a sniffer on the LAN?Snort is a great sniffer program. Sniffs everything going...
- Tags: sniffer, harold@..., networking, router, Toivo, Snort, LAN, network, PC
- Discussion threads 2007-02-08
- Secure your network with Snort intrusion prevention techniques
- This sample chapter, taken from Sams' Intrusion Detection with Snort, discusses some advanced concepts in using Snort as an alternative intrusion prevention device. Learn why Snort IDS is a smart alternative to intrusion prevention. The process of deploying intrusion prevention is lengthier and requires greater attention to...
- Tags: Technique, Snort, Network, Sams Publishing, Intrusion Prevention, Security
- Book chapters 2005-10-21
