DEV Community

AJ
AJ

Posted on

2

Snort

Snort

Snort is set of predefined rules which is used mostly for IDS or IPS. It has 3 main operational modes

  • Packet Sniffing- Shows network traffic like Wireshark
  • Packet logging —> collects and logs network traffic into a file
  • Network intrusion detection —> Analyzes packets and matches traffic against signature

Intrusion detection system

  • Network intrusion detection system —> monitors traffic from different areas of the network and if a signature is identified an alert is made
  • Host based intrusion detection system —> Monitor traffic from a single endpoint device, basically investigating the traffic on a specific device and if a signature is identified an alert is created

ntrusion prevention system

  • Network intrusion prevention system —> monitor traffic and if a signature is identified the connection is terminated
  • Behavior based intrusion prevention system —> Same thing it monitors and terminates if an usual behavior is detected, the difference between NIP and BIP is behavior based requires training period which is known as baselining to learn normal traffic so it can differentiate between threats etc.
  • Wireless intrusion Prevention System —> monitors the traffic flow from of wireless network, if a signature is identified the connection is terminated
  • Host-based Intrusion Prevention System —> monitors and protects network on one single end point device, if a signature is identified the connection is terminated

Detection prevention techniques

  • Signature based
  • behavior based
  • Policy based

Image of Timescale

🚀 pgai Vectorizer: SQLAlchemy and LiteLLM Make Vector Search Simple

We built pgai Vectorizer to simplify embedding management for AI applications—without needing a separate database or complex infrastructure. Since launch, developers have created over 3,000 vectorizers on Timescale Cloud, with many more self-hosted.

Read more

Top comments (0)

Image of Docusign

🛠️ Bring your solution into Docusign. Reach over 1.6M customers.

Docusign is now extensible. Overcome challenges with disconnected products and inaccessible data by bringing your solutions into Docusign and publishing to 1.6M customers in the App Center.

Learn more

👋 Kindness is contagious

Engage with a sea of insights in this enlightening article, highly esteemed within the encouraging DEV Community. Programmers of every skill level are invited to participate and enrich our shared knowledge.

A simple "thank you" can uplift someone's spirits. Express your appreciation in the comments section!

On DEV, sharing knowledge smooths our journey and strengthens our community bonds. Found this useful? A brief thank you to the author can mean a lot.

Okay