DESCRIPTION
Created in 1998 by Martin Roesch, this robust and free IDS allows you to detect thousands of worms and suspicious behavior. Moreover, you can create new rules or modify existing ones to detect issues. It provides the source IP addresses for each of the IDS events. Being constantly updated with new features.
# Snort Open Source
EDITOR RATING:
very good
Pros
Runs under all the email accounts on your PC. Includes all update and technical support (commercial edition,only). Produces a nice graph view and live statistics. Integrates into many commercial products.
Cons
The callers ID is no longer available on this application. No firewall protection included.
The Verdict
Easy to use and deploy, the program enables to stop emails written in specific languages with one click. Supports logging to MySQL and ODBC databases. .
Features
Port numbers
Dynamic rules
Default classifications
This open source IDS system should be seen as a complement to your other network defenses rather than as a replacement for them.
Written in C, it also enables several configurable command line options. However, we don't recommend snort on Windows. It can be configured to run
in three modes.
- Inline mode: uses specific rule types
- NIDS mode: ability to perform several actions based upon what it sees
- Packet Logger mode: allows you to log each packet to disk
- High performance configuration
- Specifying several instance identifiers
- FTP client configuration (IP address and by default)
In addition to that, the program covers both the methodology of penetration testing and all of the tools used by intruders and penetration testers. Besides, this lightweight IDS solution enables to detect OS fingerprinting attempts, malicious code, stealth port scans and buffer overflows. This based network intrusion detection service enables you to access to your alert reports and device activities. Provides TCP stream reassembly and stateful analysis.
Once Snort is running on your server, you can check many of the attempted attacks on your machines. You can also add Oinkmaster, a popular rule management tool, written is Perl language.
Alerts against unwanted internal or external network. In NIDS mode, Snort allows you to match packet bytes against a set of rules. In addition to that, these C routines are compiled into a library.
Overall, with its add-ins and ons, Snort has to be one of our favorites. Moreover, this open source tool can act as a sniffer and can be deployed rapidly within your network.
Specs and Data : system requirements
Required functions
Detection engine. Note: each dynamic module must define a wide range of data objects to work within this framework.
New Features
Meta data: rule options are evaluated in the order specified.
Compare Prices
Eblaster
$99.95
Offers online searches and sends monitor user reports through e-mail Includes user and program activity.
Webwatcher 7
$97.00
Not compatible with the Macintosh platform. Ability to record each keyboard strokes.
Spector Pro
$99.95
New feature: you are able to monitor users social networking activities.
SpyAgent
$69.95
Program offers two installation methods: administrator and stealth installation.
@ALLsecuritySoft
All-Internet-Security