Browse wiki
This entry published by the Free Software Foundation.
| SNORT |
| Component programs | See,/contrib/README,file,in,the,distribution,for,complete,list + |
|---|---|
| Computer languages | C + |
| Documentation note | User FAQ available from http://www.snort.org/; see same URL for complete list of documentation; user manpage included in the distribution |
| Full description | Snort is a network intrusion detection sys … Snort is a network intrusion detection system that performs real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and more. Snort has three primary uses: as a straight packet sniffer like tcpdump(1), as a packet logger (useful for network traffic debugging, etc), or as a full blown network intrusion detection system. Snort logs packets in either tcpdump(1) binary format or in Snort's decoded ASCII format to logging directories that are named based on the IP address of the "foreign" host. It should work any place libpcap does. Snort uses a flexible rules language to describe traffic that it should collect or pass, as well as a detection engine that utilizes a modular plugin architecture. It also has real-time alerting capabilities. also has real-time alerting capabilities. |
| Homepage URL | http://www.snort.org/ + |
| IRC development | irc://irc.linux.com/snort + |
| Interface | command-line + |
| Internet-application | security + |
| Is GNU | false + |
| Keywords | security + , packet + , snort + , intrusion + , detection + , intrusion detection + , packet logging + , packet sniffing + |
| Last review by | Janet Casey + |
| Last review date | 19 July 2005 + |
| License | GPLv2 + |
| License verified by | Janet Casey + |
| License verified date | 3 July 2001 + |
| Name | SNORT + |
| Paid support | http://www.sourcefire.com http://www.silicondefense.com + |
| Prerequisite description | libpcap + |
| Prerequisite kind | Required to use + , Required to build + |
| Real name | Martin Roesch + |
| Related projects | RazorBack + , Snort-rep + , Libpcap + , Mod security + , Scanlogd + , Tcpdump + |
| Resource URL | http://sourceforge.net/cvs/?group_id=3357 + , mailto:roesch@clark.net + , http://lists.sourceforge.net/mailman/listinfo/snort-announce + , http://lists.sourceforge.net/mailman/listinfo/snort-devel + , http://lists.sourceforge.net/mailman/listinfo/snort-users + |
| Resource audience | Developer + , Bug Tracking + , Help + , Support + |
| Resource kind | VCS Repository Webview + , E-mail + , Mailing List Info/Archive + |
| Revisionid | 2,963 + |
| Revisiontimestamp | 12 April 2011 13:32:11 + |
| Revisionuser | WikiSysop + |
| Role | Maintainer + |
| Security | internet + |
| Short description | Network intrusion detection system + |
| Submitted by | Database conversion + |
| Submitted date | 1 April 2011 + |
| Use | internet-application + , security + |
| User level | none + |
| VCS checkout command | :pserver:anonymous@cvs.sourceforge.net:/cvsroot/snort + |
| Version comment | 2.3.3 stable released 2005-04-22 |
| Version date | 22 April 2005 + |
| Version download | http://www.snort.org/dl/current/snort-2.3.3.tar.gz + |
| Version identifier | 2.3.3 + |
| Version status | stable + |
| Modification dateThis property is a special property in this wiki. | 24 May 2012 23:52:17 + |
| Page has default formThis property is a special property in this wiki. | Entry + |
| EmailThis property is a special property in this wiki. | roesch@clark.net + |
| hide properties that link here |
| SNORT#7 + | License of |
|---|---|
| SNORT#1 + | Person of |
| Libpcap + , Mod security + , RazorBack + , Scanlogd + , Snort-rep + , Tcpdump + | Related projects |
| SNORT#2 + , SNORT#3 + , SNORT#4 + , SNORT#5 + , SNORT#6 + | Resource of |
| SNORT#8 + , SNORT#9 + | Software prerequisite of |
Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 1.3 or any later version published by the Free Software Foundation; with no Invariant Sections, no Front-Cover Texts, and no Back-Cover Texts. A copy of the license is included in the page “GNU Free Documentation License”.
The copyright and license notices on this page only apply to the text on this page. Any software described in this text has its own copyright notice and license, which can usually be found in the distribution itself.