Snort
Defensive ids-ips
Open Source
Historic intrusion detection system
Platforms:
linux windows
Prerequisites:
networking linux
Pros and Cons
Ventajas
- + Huge rule base
- + Industry standard
- + Well documented
- + Historic community
- + Rules compatible with other IDS
Desventajas
- - Single-threaded (older versions)
- - Less modern than Suricata
- - Configuration can be complex
Casos de Uso
- Network intrusion detection
- Signature-based detection
- Compliance requirements