Snort
A Tool for Running Snort in Dynamic IP Address Assignment Environment
The purpose of this paper is to detail the creation of a small tool program which aids the operation of the Snort IDS in dynamically assigned IP address environment. The ...
Written by: Shin Ishikawa and added on Feb. 24, 2011Building and Maintaining a NIDS Cluster Using FreeBSD and Snort
What I am going to show you here is how to build a NIDS cluster with central logging and maintenance facilities. Hopefully this will help you take more control over ...
Written by: Michael Boman and added on March 25, 2011Securing an Unpatchable Webserver... HogWash!
During a routine examination of a client's network we discovered a vulnerability on a Microsoft IIS 3 web server. After brief investigation, we discovered that this web server runs a ...
Written by: Jed Haile and Jason Larsen and added on April 13, 2011A Practical Guide to Running SNORT on Red Hat Linux 7.2 and Management Using IDS Policy Manger MySQL
In the brief time that I have been on this planet the state of computing has changed drastically. The high-powered computers and blink of the eye internet connectivity once reserved ...
Document added on Jan. 22, 2011Securing a Windows Snort Sensor for Hostile Environments
Snort is an open-source Network Intrusion Detection System (NIDS). Originally written for UNIX, it has since been ported to the Windows platform. While Snort undoubtedly runs faster and with less ...
Document added on April 28, 2011Snort Install on Win2000/XP with Acid, and MySQL
The purpose of this paper is to detail using Snort as a Network Intrusion Detection System. Unfortunately Snort is not just a simple executable file that one could click next ...
Document added on June 28, 2011Using Snort v1.8 with SnortSnarf on a RedHat Linux System
To effectively implement system and network security, a multi pronged approach should be used. Proper security policies, firewalls, proxy servers, properly complex passwords and intrusion detection systems layered together help ...
Document added on Jan. 18, 2011Using Snort For a Distributed Intrusion Detection System
Intrusion detection has become an extremely important feature of the defense-in-depth strategy. The thought used to be that if you had a firewall protecting your network you were secure. This ...
Written by: Michael P. Brenman and added on Jan. 16, 2011Wanted Dead or Alive: Snort Intrusion Detection System
With the status of intrusion detection systemÂ’s (IDS) future doubted by some and supported by others, the steps involved in building a distributed IDS are questioned. Issues with deployment and ...
Document added on June 26, 2011Snort Alert Collection and Analysis Suite
This document outlines separating Snort IDS Collection and Analysis Suite duties across a minimum of three servers (Snort sensor, MySQL database and an ACID web server) to gain optimal coverage ...
Document added on April 29, 2011