Intrusion Detection with Snort

From the Publisher: Snort is the most popular open source Intrusion Detection System. With over 100,000 installations worldwide, Snort has become one of the hottest security applications. By meeting and beating the majority of the features and the raw performance of multi-million dollar commercial Intrusion Detection Systems, and strictly adhering to the open source model of public distribution free of cost, Snort has gained rapid acceptance in the enterprise and home environments. Snort depends on a wide variety of additional, independently created, tools which are covered in this book. Intrusion Detection with Snort is a hands-on guide to designing, installing, and maintaining a Snort deployment in both the corporate enterprise and the at-home network. Real world examples that get you through critical tasks such as; sensor placement, real-time alerting, and tuning Snort, are presented in a easy-to-follow manner that allows you to develop a rapid understanding of Snort. Intrusion Detection with Snort includes a comprehensive walk-through that includes the installation and configuration of Snort on many different platforms, selecting and deploying a Snort Management GUI, and a detailed examination of Snort's internals including the Snort preprocessors. Advanced topics, such as Snort rule writing, upgrading and using Snort as an Intrusion Prevention device are covered as well.