A lightweight intrusion detection system and intrusion prevention system for GNU/Linux systems

  Add it to your Download Basket!

 Add it to your Watch List!


Rate it!

What's new in Snort

  • src/build.h: updating build number to 177
  • src/preprocessors/Stream6/snort_stream_tcp.c: Documentation: Fixed issue in which TCP trim normalization would occur when it was not necessary.
  • src/decode.c, src/encode.c: Added support for Cisco FabricPath decoding/encoding. Ensure flow_id is copied into the DAQ_PktHdr_t.
  • src/snort.h, src/sfutil/sfrt.c, src/sfutil/sfrt.h src/target-based/sftarget_reader.c: Moved ntohl conversion inside of the sfrt api for both IPv4 and IPv6.
Read full changelog
send us
an update
GPL (GNU General Public License) 
Sourcefire, Inc.
3.5/5 50
ROOT \ Security
1 Snort Screenshot:
Snort - Example Snort output
Downloaded by millions of people worldwide, and with over half a million registered users, Snort is an open source and free command-line application that can be successfully used for network intrusion prevention, detection and protection on any GNU/Linux operating system, capable of packet logging and real-time traffic analysis.

Features four different modes and rules

The project can be configured in four modes, Sniffer mode, Packet Logger mode, Network Intrusion Detection System (NIDS) mode, as well as the Inline mode. Additionally, Snort comes with predefined rules that can be downloaded from the project’s website, created by the community or by the Snort developers.

The most widely deployed IPS/IDS technology

Despite the fact that it runs from the command-line, Snort isn't very hard to use, but there are a lot of options for you to play with. It successfully combines the benefits of anomaly-based inspection, signature and protocol, making it the most widely deployed IPS (Intrusion Prevention System) and IDS (Intrusion Detection System) technology.

Supported operating systems and availability

As it’s available for download as a universal sources archive, Snort is officially supported under numerous GNU/Linux distributions, but it officially supports, with binary packages, the Fedora, CentOS, FreeBSD and Microsoft Windows operating systems. Both 32-bit and 64-bit architectures are supported at this time.

Getting started with Snort

Snort can be easily installed on numerous GNU/Linux flavors, as it is available for download from the default software repositories of popular Linux kernel-based operating systems. Gettings started documentation can be found on the project’s page, covering a vast amount of questions related on how to setup Snort on Debian, openSUSE, Fedora, CentOS, FreeBSD and NetBSD OSes.

Snort was reviewed by , last updated on March 13th, 2015

#intrusion detection #security software #detection technology #Snort #intrusion #detection #security

Add your review!