[Snort-devel] Fwd: hybrid IDS using snort

Al Lewis (allewi) allewi at ...3461...
Mon Mar 9 06:18:56 EDT 2015

Do you have a basic preprocessor setup? If not this  http://manual.snort.org/node40.html may be a good place to start.

Hope this helps!

Albert Lewis
QA Software Engineer
SOURCEfire, Inc. now part of Cisco
9780 Patuxent Woods Drive
Columbia, MD 21046
Phone: (office) 443.430.7112
Email: allewi at ...3461...

From: Roshan Srivastava [mailto:roshan.kumar417 at ...2499...]
Sent: Sunday, March 08, 2015 9:34 AM
To: snort-devel at lists.sourceforge.net
Subject: [Snort-devel] Fwd: hybrid IDS using snort

I am doing a project based on intrusion detection systems.

And I want to build a Hybrid IDS using open source tool SNORT. I read few good papers on that. But still I am not able to get a lead on how to mount PHAD (an anomaly based IDS) as a preprocessor to SNORT. Please help me to get a lead in my project.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-devel/attachments/20150309/3d821608/attachment.html>

More information about the Snort-devel mailing list