|You are not logged in. Only a regsistered user can explore
the abstracts completely.
New User ? Register here! The registration process is
very simple and free.
Snort is an open source lightweight network intrusion detection system
based on libpcap. It can produce real-time alerts as well as packet logs in a variety
of formats. Snort has a flexible rules language to describe what alerts should
be alerted, logged, or passed. Different members of the Snort community provide
rules that can be used for a particular installation and sites can write their own rules.
The detection engine uses a modular plugin architecture, which allows developers to
extend Snort and users to choose the functionality required to meet their needs.
The portscan detection functionality in Snort is made possible by a preprocessor
plugin. The Snort portscan detector attempts to look for X TCP or UDP packets sent
to any number of host/port combi....