This project provides a lightweight intrusion detection solution for Linux systems
Downloaded by millions of people worldwide, and with 400,000 registered users, Snort is an open source and free command-line application that can be successfully used for network intrusion prevention and detection. The project can be configured in four modes:

- Sniffer mode;
- Packet Logger mode;
- Network Intrusion Detection System (NIDS) mode;
- Inline Mode.

Snort isn't very hard to use, but there are a lot of command-line options to play with. It successfully combines the benefits of anomaly-based inspection, signature and protocol, making it the most widely deployed IPS/IDS technology worldwide.

last updated on:
January 24th, 2014, 8:02 GMT
developed by:
Sourcefire, Inc.
license type:
GPL (GNU General Public License) 
ROOT \ Security


In a hurry? Add it to your Download Basket!

user rating 47



1 Screenshot
Snort - Example Snort output
What's New in This Release:
  • New additionsAdd support to do file specific processing within DCERPC preprocessor for files being transferred over SMB.
  • File capture and storage -- saves files as they traverse the network via a new preprocessor that ties in support within HTTP, FTP, SMTP, POP, IMAP, and SMB. See README.file and README.file_server (under tools/file_server) for details.
  • Add = operators to byte_test rule option.
  • Update SMTP to detect Cyrus SASL authentication attack.
read full changelog

Add your review!