snort-1.5.tar.gz

snort-1.5.tar.gz: Posted Dec 9, 1999; Authored by Martin Roesch | Site clark.net; Snort is a libpcap-based packet sniffer/logger which can be used as a lightweight network intrusion detection system. It features rules based logging and can perform content searching/matching in addition to being used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, and much more. Snort has a real-time alerting capabilty, with alerts being sent to syslog, a seperate "alert" file, or as WinPopup messages via Samba's smbclient.; Changes: detection and preprocessor plugins (think packet sniffing API), rule file variables and includes, preprocessors, TCP session logging, new detection capabilities (IP options, multiple content strings per rule), new protocol decoders (I4L-ISDN, NULL), new http preprocessor normalizes web traffic, defeating evasive web scanners like whisker.pl, faster and more accurate IP and TCP option decoders, etc.; tags | tool, overflow, cgi, sniffer; SHA-256 | fbcf52430b9b6f565608394593577f039ed3eccb3f8e9782aa78c44553dcefb8; Download | Favorite | View

Top Authors In Last 30 Days