The contents of this legacy page are no longer maintained nor supported, and are made available only for historical purposes.

Bibliography Details

M. Roesch, "Snort Lightweight Intrusion Detection for Networks", in USENIX LISA 1999, Nov 1999.

Snort Lightweight Intrusion Detection for Networks
Authors: M. Roesch
Published: USENIX LISA, 1999
Entry Dates: 2009-02-06
Abstract: Network intrusion detection systems (NIDS) are an important part of any network security architecture. They provide a layer of defense which monitors network traffic for predefined suspicious activity or patterns, and alert system administrators when potential hostile traffic is detected. Commercial NIDS have many differences, but Information Systems departments must face the commonalities that they share such as significant system footprint, complex deployment and high monetary cost. Snort was designed to address these issues.
  • content pattern matching;
  • a tool for small, lightly utilized networks for detecting intrusion; available under the GNU;