Embed Doc
Copy Link
Readcast
Collections

CommentGo Back

Download

Harnessing thePower of Snort

Brian Caswell

Principal Research Engineer

Sourcefire Vulnerability Research Team

Background



What is Snort?



Open Source packet analysis tool



The most widely deployed Network Intrusion DetectionSystem (NIDS)



The de facto standard in intrusion detection andprevention



Who is Brian Caswell?



Sourcefire Vulnerability Research Team - PrincipalResearch Engineer



Keeping Snort users ahead of the threat



Snort Rules Maintainer



Author

Snort 2.1 Intrusion Detection: Second Edition

Snort History



Initial release by Marty Roesch in 1998



Original goals of Snort:



Traffic analysis tool for home network



Debugger for service simulators Marty was developingfor a honeypot system



Learning tool for libpcap



Initial open source release inDecember 1998



Just a sniffer, no rule language



Rules implemented early 1999



1.0 release, June 1999



Basic rules language, stateless

of 00

Linux World Expo

Download or Print

506 Reads

Info and Rating

Category:	Uncategorized.
Rating:
Upload Date:	03/08/2009
Copyright:	Attribution Non-commercial
Tags:	Internet & Technology Presentations & Spreadsheets Internet & Technology Presentations & Spreadsheets (fewer)

Flag document for inapproriate content

Uploaded by

subhendu14

Download

Embed Doc
Copy Link
Add To Collection
Comments
Readcast
Share

Share on Scribd:

Readcast

TIP Press Ctrl-F⌘F to quickly search anywhere in the document.

Searching...

Result 00 of 00

00 results for result for

More From This User

configuration

About Snort The IDS technology

About IP V6

About IP Routing

About Firewalls

Related Docuements

12 p.

Snort Report

From 王家毅

23 p.

Snort® Installation, Configuration and Basic Usage

From leidianeas1983

13 p.

Snort 2.8.4.1 Ubuntu

From Astrid Toleransia Helida G

13 p.

Snort 2.8.4.1 Ubuntu

From Harshitha Balakumar

From srvtiwari

From John Tracz

From Fabio Borin

From Pearltrees

From wwdt4h

From pinuts666

From hulkguy

From ricauter2005

From mvondo

From Ahmed Bak

Installing Snort and MySQL for Windows

From Maroš Sitko

28 p.

Snort

From Fakhrul Febriandi

288 p.

2.6Logging in Binary

If you are a network administrator, you're under a lot of pressure to ensure ...

From O'Reilly Media, Inc.

288 p.

1.22Capturing Without Putting the Interface into Promiscuous Mode

If you are a network administrator, you're under a lot of pressure to ensure ...

From O'Reilly Media, Inc.

288 p.

Snort Cookbook

If you are a network administrator, you're under a lot of pressure to ensure ...

From O'Reilly Media, Inc.

5 p.

This is a How to Setup Snort With Acid on Rhel 4

How to setup NIDS (Network Intrusion Detection System) with snort and Acid in...

From api_user_11797_taurusking5

41 p.

2.3Халдлага эсэргүүцэх системийн тухай

"Халдлага эсэргүүцэх систем" сэдэвт дипло�...

From otgonlkhagva

41 p.

4.2Бодит халдлагын үр дүн

"Халдлага эсэргүүцэх систем" сэдэвт дипло�...

From otgonlkhagva

41 p.

ips

"Халдлага эсэргүүцэх систем" сэдэвт дипло�...

From otgonlkhagva

15 p.

Snort_2.8.6_FC13

From Elio Pires

Documents

People