Snort is an open source intrusion prevention system capable of real-time traffic analysis and packet logging. It uses a series of rules to define malicious network activity and generates alerts for users. It can be deployed inline to stop malicious packets and can be used as a packet sniffer, packet logger, or a full-blown network intrusion prevention system. Snort has two sets of rules: the Community Ruleset and the Snort Subscriber Ruleset. The Snort Subscriber Ruleset is developed, tested, and approved by Cisco Talos, while the Community Ruleset is developed by the Snort community and QAed by Cisco Talos. To get started with Snort, users need to download and install the source code, sign up and get an Oinkcode, and configure the rules.
This tool is not verified yet and doesn't have listed features.
Did you submit the verified tool? Sign in to add features.
Are you the author? Claim the tool by clicking the icon above. After claiming, you can add features.
Stenographer is a high-performance full-packet-capture utility for intrusion detection and incident response purposes.
Network Dump data Displayer and Editor framework for tcpdump trace files manipulation.
Unfurl is a URL analysis tool that extracts and visualizes data from URLs, breaking them down into components and presenting the information visually.
A suite for man in the middle attacks, featuring sniffing of live connections, content filtering, and protocol dissection.
OpenSnitch is a GNU/Linux application firewall with interactive outbound connections filtering and system-wide domain blocking capabilities.
Passive Network Audit Framework (PNAF) v0.1.2 provides passive network auditing capabilities and is now a project of COSMIC-Chapter of The Honeynet Project.