Top White Papers
Use Profiling to Improve Snort PerformanceOct 06, 2011, 09:00 (0 Talkback[s])
[ Thanks to Lee Schlesinger for this link. ]
Snort is generally used to monitor and analyze incoming network traffic, to detect potential probes and attacks of various sorts. Whilst the main powerhouse of Snort is the detection engine, not all attacks can be identified here, so it also has an array of preprocessors that either look at packets themselves or modify traffic before passing it to the detection engine.
0 Talkback[s] (click to add your comment)