Snort
Key Details of Snort
- Detect and prevent emerging network intrusions with real-time traffic analysis and packet IP logging
- Last updated on 09/30/20
- There has been 1 update within the past 6 months
- The current version has 1 flag on VirusTotal
Developer's Description
Snort is an open source network intrusion prevention and detection system utilizing a rule-driven language, which combines the benefits of signature, protocol, and anomaly based inspection methods. Snort has three primary uses: it can be used as a straight packet sniffer, a packet logger (useful for network traffic debugging), or as a full blown network threat detection and prevention system.
Snort can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Snort uses a flexible rule based language to describe traffic that it should collect or pass, and a modular detection engine. Snort has a real-time alerting capability, with alert mechanisms for syslog, a user specified file, a UNIX socket, or WinPopup messages to Windows clients using Samba's smbclient.
Full Specifications
What's new in version 2.9.16.1
- Added support for GCC version 10.1.1.
- Added packet counters to make sure flows with one-way data don't pend forever.
- Fixed potential race condition between reload and exit path.
General
Operating Systems
Popularity
Related Software
Multiplicity
NetSpeedMonitor (64-bit)
Advanced IP Scanner
Cisco AnyConnect
Get the best price on everything
Shop your favorite products and we’ll find the best deal with a single click. Designed to make shopping easier.