The document discusses Snort, an open source intrusion detection system. It describes what an IDS is, types of attacks, how Snort works using preprocessors and output plugins, and how to position Snort sensors in a network to detect both external and internal threats.
Unlocking the Power of ChatGPT and AI in Testing - A Real-World Look, present...
Mitigando ataques com_snort
1. Reducing network
attacks with Snort
cleber brandao
cleber.brandao[nospam]locaweb.com.br
sexta-feira, 18 de novembro de 11
2. Agenda
• What is an IDS
• Types of attack
• Snort structure
•
How snort works
•
Preprocessors
•
Output plugins
•
Operation modes
• Positioning
• Q&A
sexta-feira, 18 de novembro de 11
3. What is an IDS?
• Intrusion Detection System
• Layer 7 analysis
• Just a sensor
• IPS can drop packets
• Pattern match or behavior
sexta-feira, 18 de novembro de 11