snort

ZDNet Resources

• sort by:
• Relevance
• Date
• Popularity

SugarCRM, SourceFire, Compiere upgrades almost ready to roll

As the month of May closed, a number of top open source application vendors announced beta releases and forthcoming upgrades. These include open source CRM, security and ERP vendors.  SugarCRM, of Cupertino, Calif., announced the beta release of version 5.5 of its namesake open...

Tags: Sourcefire Inc., Mobile, Snort, Open Source, ERP, SugarCRM, CRM, Advertising & Promotion, Customer Relationship Management (CRM), Enterprise Resource Planning (ERP), Enterprise Software, Marketing, Software, Paula Rooney

Blog posts 2009-05-31

Fast Packet Classification for Snort by Native Compilation of Rules

Signature matching, which includes packet classification and content matching, is the most expensive operation of a signature-based Network Intrusion Detection System NIDS. This paper presents a technique to improve the performance of packet classification of Snort, a popular open-source NIDS, based on generating native code from Snort signatures. An obvious...

Tags: Snort, Packet Classification, Intrusion Detection, Security, Network Security, Networking

White papers 2008-10-10

Snort Security Platform (Snort SP) 3.0 beta released

Congrats to Martin Roesch and crew for delivering the next in a long line of well respected open source security products.  From Snort's site: Snort Security Platform SnortSP 3.0 Beta We’re pleased to introduce our first beta release built on the new Snort 3.0 architecture. The Snort 3.0...

Tags: Snort, Beta, SnortSP, Snort 3.0 Architecture, Databases, Networking, Security, Enterprise Software, Software, Data Management, Nathan McFeters

Blog posts 2008-07-01

A Traffic-Based Intrusion Detection System in IPv6/4 Environments and Its Performance Analysis

This paper proposed a traffic-based intrusion detection system framework in IPv6/4 environments and a traffic-based intrusion method. Through the establishment of a mathematical model to identify the relationship among detection time, memory usage and classification, one achieved a highly effective detection method which considered both traffic characteristics and rule characteristics....

Tags: Method, Performance, Snort, Intrusion Detection System, Intrusion Detection, Network Security, Security, Networking

White papers 2008-07-01

Gnort: High Performance Network Intrusion Detection Using Graphics Processors

The constant increase in link speeds and number of threats poses challenges to Network Intrusion Detection Systems NIDS, which must cope with higher traffic throughput and perform even more complex per-packet processing. This paper presents an intrusion detection system based on the Snort open-source NIDS that exploits the underutilized computational...

Tags: Processor, Network Intrusion Detection System, Throughput, Snort, Network, High-performance, Intrusion Detection System, Graphics, GPU, Intrusion Detection, Network Security, Security, Networking

White papers 2008-06-17

Rule Generalisation Using Snort

Intrusion Detection Systems IDSs provide an important layer of security for computer systems and networks. An IDS's responsibility is to detect suspicious or unacceptable system and network activity and to alert a systems administrator to this activity. The majority of IDSs use a set of signatures that define what suspicious...

Tags: Snort, Intrusion Detection System, Inderscience Enterprises, Intrusion Detection, Network Security, Security, Networking

White papers 2008-04-08

On Detecting Port Scanning Using Fuzzy Based Intrusion Detection System

Intrusion detection is a mechanism used to detect various attacks on a wired or wireless network. Port scanning is one of the dangerous attacks that intrusion detection tries to detect. Snort, a famous Network Intrusion Detection System NIDS, detects a port scanning attack by combining and analyzing various traffic parameters....

Tags: Snort, Network, Intrusion Detection System, American University, Attack, Logic Controller, Experiments, Intrusion Detection, Security, Network Security, Wi-Fi, Wireless And Mobility, Networking

White papers 2008-02-28

Applying Fast String Matching to Intrusion Detection

The performance of signature-based network intrusion detection tools is dominated by the string matching of packets against many signatures. This paper studies how the popular intrusion detection system Snort can be best optimized to utilize different string matching algorithms. The paper analyzes the performance of Snort's current string matching algorithm,...

Tags: Algorithm, Snort, Engineering, Intrusion Detection, Security

White papers 2008-01-01

Compiling PCRE to FPGA for Accelerating SNORT IDS

Deep Payload Inspection systems like SNORT and BRO utilize regular expression for their rules due to their high expressibility and compactness. The SNORT IDS system uses the PCRE Engine for regular expression matching on the payload. The software based PCRE Engine utilizes an NFA engine based on certain opcodes which...

Tags: Snort, Regular Expression, FPGA

White papers 2007-12-04

Real-Time Multistage Attack Awareness Through Enhanced Intrusion Alert Clustering

Correlation and fusion of intrusion alerts to provide effective Situation Awareness of cyber-attacks has become an active area of research. Snort is the most widely deployed intrusion detection sensor. For many networks and their system administrators, the alerts generated by Snort are the primary indicators of network misuse and attacker...

Tags: Snort, Clustering, University At Buffalo, Intrusion, Intrusion Detection, Network Security, Security, Viruses And Worms, Networking

White papers 2007-12-01

Secure your network for free with Snort

In this chapter download from How to Cheat at Configuring Open Source Security Tools, gain a practical understanding of the open-source IDS known as Snort and how it can help you with your network security concerns. Learn about the history of Snort, how the Snort architecture works, and its system...

Tags: Snort, Network, Syngress, Chapter Coverage, Networking, Security

Book chapters 2007-08-08

Defend the network layer from malicious attack

The network layer is key to the operation of the stack. In this sample chapter from Hack the Stack: Using Snort and Ethereal to Master the 8 Layers of an Insecure Network, begin by reviewing the protocols that reside here, such as Internet Protocol IP, Internet Control...

Tags: Snort, Network, Malicious Attack, Syngress, Chapter Coverage, Networking

Book chapters 2007-06-22

Manage Snort intrusion detection logs with Log Parser

Snort is an open-source intrusion detection system IDS used in a wide variety of network environments. It is a lightweight but extremely powerful tool for detecting malicious traffic on your network. However, Snort users quickly learn that reporting is not its strength, and an intrusion detection system is...

Tags: Snort, Intrusion Detection System, Syngress, Chapter Coverage, Intrusion Detection, Network Security, Security, Networking

Book chapters 2007-06-08

Serial Snort 0.5 (Mac)

Serial Snort is written to facilitate the reverse engineering of some equipment. It is down and dirty, but will get the job done. It will generate a log file, and comments can be inserted as you go. Will be updated time to time.

Tags: Apple Macintosh, Snort

Software downloads 2007-04-19

Firekeeper 0.2.6 (Windows)

Firekeeper is an Intrusion Detection and Prevention System for Firefox. It is able to detect, block and warn the user about malicious sites. Firekeeper uses flexible rules similar to Snort ones to describe browser based attack attempts. Rules can also be used to effectively filter different kinds of unwanted content....

Tags: Response, Mozilla Firefox, Snort, Microsoft Windows, Mozilla Corp., Firekeeper, Web Browsers, Intrusion Detection, Internet, Security

Software downloads 2007-03-08

Can Sourcefire monetize Snort?

Can Sourcefire monetize Snort?Can you give us something besides the S-1GuysVery disappointed you did not give us anything other than S-1 information. Did you bother to look what Sourcefire is doing to monetize this? Look at the VRT rules for example. The article reads like you never...

Tags: Sourcefire Inc., S-1, Snort

Discussion threads 2007-03-07

Can Sourcefire monetize Snort?

Network intrusion detection company Sourcefire faces a number of challenges but one of its biggest may be making a buck from an open source security project dubbed Snort. Sourcefire is expected to launch an initial public offering this week with shares...

Tags: General, Software Infrastructure, Security

Blog posts 2007-03-06

Managing Badware and Policy Violation With Aanval and Bleeding Edge Threat Snort Rules

Badware, Instant Messaging IM, and Peer-to-Peer (P2P) apps, are prominent issues facing those with the task of securing enterprise computing environments. The risks are plentiful, including potential loss of confidential data, Trojans, and rootkits. The focus this month will detail the effort to manage those risks on ones network using...

Tags: Risk, Snort, P2P, Information Systems Security Association, Peer To Peer (P2P), Rootkits, Instant Messaging, Strategy, Security, Internet, Spyware, Adware & Malware, Online Communications, Management

White papers 2007-03-01

Remote code execution hole in Snort

Remote code execution hole in SnortWAR GAMES?Are these virus war game files?

Tags: Cyberthreats, Remote Code Execution, Snort

Discussion threads 2007-02-21

Open-source intrusion detector found to be flawed

Open-source intrusion detector found to be flawedWhoops.Sorry about that one guys. OpenSourcers, fix the stuff already.SnortAt least they didn't hide, head in the sand, trying to deny a flaw. I agree, it probably was already fixed, whnich is more than we can say for "Microlost," but time will tell.Hardware...

Tags: SECURITY, Microsoft Corp., Snort, flaw, open source

Discussion threads 2007-02-21