Chapter 2. Network Intrusion Detection with Snort
Snort has evolved from a simple network management tool to a world-class enterprise distributed intrusion detection system. Since its creation in 1998 to over half a million sensors installed worldwide, Snort has become by far the most widely deployed NIDS. Its author, Marty Roesch, originally designed Snort to be a personal tool to aid in network traffic analysis. Snort's original incarnation humbly decoded binary tcpdump data into a human-readable form. Never intending to release it to the public, Marty arbitrarily named it “Snort.” It ended up being a quite catchy and memorable name.
Snort was released to the public, and evolved organically over the next few years. Snort has developed into ...
Get Intrusion Detection with Snort now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
