PacketSource — Security White Papers
 
A A A
 

All pages tagged with intrusion

Hardning the Linux Kernel

This 26 page paper explores two approaches for hardening the standard Linux kernel. Address space or memory protection and access control. The author covers several well known hardening tips, including ...

Document added on March 12, 2011

Focus On Linux: Intrusion Detection on Linux

This article focuses on several host-based intrusion detection systems that are available on Linux. In particular, I will cover some of the basics of installing setting up these packages, how ...

Document added on June 16, 2011

Building an Incident Response Program To Suit Your Business

The purpose of this paper is to outline the key concepts of an Incident Response Program (IRP). Although every organization is unique, there are basics components that should be included ...

Document added on Feb. 10, 2011

Computer Forensics - We've Had an Incident, Who Do We Get to Investigate?

Computer forensics is used to conduct investigations into computer related incidents, whether the incident is an external intrusion into your system, internal fraud, or staff breaching your security p

Document added on June 12, 2011

SNORT Download Center

Snort is an open source network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can ...

Document added on March 30, 2011

Identify Intrusions with Microsoft Proxy Server, Web Proxy Service and WinSock Proxy Service Log Files

This is a guide on how to identify intrusions using Microsoft's Proxy Server log files. MS Proxy Server is an extensible firewall that provides passive defense against intrusions and functions ...

Written by: Saundra Coward and added on April 20, 2011

Incident Response Tools For Unix, Part One: System Tools

The best tools that can be utilized in response to the intrusion threat are not ones that will be discussed in detail in this series. The tools that will be ...

Written by: Holt Sorenson and added on June 24, 2011

The security risks and ways to decrease vulnerabilities in a 802.11b wireless environment

<font size="3"><b>Introduction</b></font><br></br><br> This document explains topics relating to wireless networks. The main topics discussed include, what type of vulnerabilities exist today in 802.11 networks and ways that you can help ...

Written by: Richard Johnson and added on May 6, 2011

Running Snort on IIS Web Servers Part 2: Advanced Techniques

Snort, a public domain intrusion detection system, monitors traffic by analyzing every packet on a network, looking for malevolent content. It does this by putting the network adaptor in promiscuous ...

Document added on May 22, 2011

Current SNORT User Manual

Snort really isnÂ&#x2019;t very hard to use, but there are a lot of command line options to play with, and itÂ&#x2019;s not always obvious which ones go together well. This ...

Written by: The Snort Project and added on April 19, 2011