SNORT Host Intrusion Prevention System (Freeware)

[hjlbx]

SNORT Host Intrusion Prevention System (Freeware)

Snort is an open source network intrusion prevention system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching, and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more.

Snort.Org

FAQ

Easier than OSSEC... and free.

 

[Venustus]

SNORT Host Intrusion Prevention System (Freeware)

Snort is an open source network intrusion prevention system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching, and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more.

Technical Infos & Download

FAQ

Easier than OSSEC... and free.

Again,the link is not working!!
Thanks anyway!!

Edit:Thanks for fixing the link!!

 

[Deleted member 178]

good'ol tool , i didn't know it still exist

 

[hjlbx]

good'ol tool , i didn't know it still exist

I agree. It has gotten better, but it is still a pain.

Way too much for home user.

Just my opinion.

 

[Online_Sword]

Regarding two IPS softwares you posted today (SNORT and Suricata), although I know little about them, I think they should be called "Network Instruction Prevention System" (NIPS), not Host Instruction Prevention System (HIPS). Some literature on the difference between NIPS and HIPS: NIPS and HIPS .

By the way, would NIPS softwares conflict with software firewalls?

 

[hjlbx]

Regarding two IPS softwares you posted today (SNORT and Suricata), although I know little about them, I think they should be called "Network Instruction Prevention System" (NIPS), not Host Instruction Prevention System (HIPS). Some literature on the difference between NIPS and HIPS: NIPS and HIPS .

By the way, would NIPS softwares conflict with software firewalls?

I agree - HIPS, HIDS, IPS, IDS, NIPS...

Conflict ?

I don't think so, but will require optimization.

Symantec, Norton, Bitdefender, etc - have both firewall and IDS\IPS - and they work - for the most part... LOL.

 

[XavierGaming]

My paranoia is pulling me to this software. xD
However, I have a few questions.
Is this good for locking down your system?
Is this a stable product?
Is this product worth it?

 

[LahiruRajinda]

impressive web design on snort.org !

 

[woomera]

i have used it before they never bothered to make a GUI for it, so its a bit too advanced for home users. although it is invaluable to a network admin!

 

[soccer97]

I was able to see SNORT in action on a large network. It was during a time that there was a major RCE JRE exploit unpatched for 2-3 weeks. Its a useful product. Home use, if you really want to, but a lot of work. Last time I check it was free, but the definitions were 90 daysold and below. Otherwise, its a very good IDS/NDS. .