• Advertise
• Search
• Members
• Free Magazines
• Newest Links
• Categories
• Register
• Login

Running Snort on IIS Web Servers Part 2: Advanced Techniques

Added by Papergrl

Description: Snort, a public domain intrusion detection system, monitors traffic by analyzing every packet on a network, looking for malevolent content. It does this by putting the network adaptor in promiscuous mode so that it can see all network traffic on the wire, a process referred to as packet sniffing. Snort is a rule-based IDS, which means that it applies a set of rules to each packet based on known attack signatures. When it detects an attack signature, it performs the action designated in the rule.