• RSS
  • Twitter
  • FaceBook

Security Forums

Log in

FAQ | Search | Usergroups | Profile | Register | RSS | Posting Guidelines | Recent Posts

Information about Security

Users browsing this topic:0 Security Fans, 0 Stealth Security Fans
Registered Security Fans: None
Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> Firewalls // Intrusion Detection - External Security

View previous topic :: View next topic  
Author Message
SECINT
Just Arrived
Just Arrived


Joined: 30 Mar 2010
Posts: 0


Offline

PostPosted: Tue Mar 30, 2010 11:46 am    Post subject: Information about Security Reply with quote

Hello everyone,

It's been several days that I am researching the IDS / IPS (intrusion detection / prevention system) and this is the software for me so lot:

SNORT -
-PRELUDE
BRO -
OSSEC -
OSSIM -

My question:

What is for you the most comprehensive tools to detect an intrusion and then act on the attack?

Have you ever experience with these tools and there are there other more interesting?

Thank you in advance for your reply
Back to top
View user's profile Send private message
gnix
Just Arrived
Just Arrived


Joined: 11 Dec 2009
Posts: 0


Offline

PostPosted: Mon Apr 05, 2010 8:38 am    Post subject: Reply with quote

Snort is the de facto standard for IDS/IPS. As any security professional will tell you, Snort is an excellent tool for real-time traffic analysis, packet logging, detection of attacks such as buffer overflows, and prevention of attacks.

gnix
Back to top
View user's profile Send private message
eladl
Forum Fanatic
Forum Fanatic


Joined: 25 Mar 2010
Posts: 16777215


Offline

PostPosted: Tue Apr 06, 2010 3:03 am    Post subject: Reply with quote

Snort is a great solution for an open source software you can set up on any server, though there are excellent hardward IDS/IPS available in the market.

OSSEC is more of an HIDS and is a great tool as well, but is configured localy on the server/host.

Whereas OSSEC is HIDS, Snort is NIDS (Network IDS) and operates at the network level.
Back to top
View user's profile Send private message Send e-mail Visit poster's website
abrahamj
Just Arrived
Just Arrived


Joined: 28 Feb 2010
Posts: 0


Offline

PostPosted: Mon Sep 20, 2010 11:02 am    Post subject: Reply with quote

You try the Ax3soft Sax2, it is a professional network intrusion detection (IDS) and intrusion prevention system (IPS) to detect variety of attacks, including SQL inject attacks, worms, backdoor Trojans, ARP spoof, CGI/WWW attacks, DoS/DDoS, password guessing and so on.
Back to top
View user's profile Send private message Send e-mail
Display posts from previous:   

Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> Firewalls // Intrusion Detection - External Security All times are GMT + 2 Hours
Page 1 of 1


 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

Community Area

Log in | Register