[Snort-users] Evading IDS

Joe Horton mymailii at ...131...
Sun May 11 16:42:15 EDT 2003


Heres some interesting stuff i found on how to avoid IDS detection.  How many of these methods is Snort still vulnerable too?  Are there any new ways of getting around an IDS (anomaly or signature)?  Unicode, fragmenting with padding, overlaying, and TTL, etc... http://www.securityfocus.com/infocus/1577
http://secinf.net/info/ids/idspaper/idspaper.html
http://www.infosecuritymag.com/2002/jul/sneaking.shtml
http://www.securityfocus.com/infocus/1232


---------------------------------
Do you Yahoo!?
The New Yahoo! Search - Faster. Easier. Bingo.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20030511/37418282/attachment.html>


More information about the Snort-users mailing list