Good, Free IDS anyone?
Page 1 of 2 12 LastLast
Results 1 to 10 of 15

Thread: Good, Free IDS anyone?

  1. #1
    Senior Member
    Join Date
    Jun 2002
    Posts
    144

    Question Good, Free IDS anyone?

    Im sorry if this has been posted before. I tried to find a thread for this but came up empty handed. I am setting up a home network from which I plan to run a linux server eventually on a cable modem. I am working on this from the ground up. I am testing different software and different os's to learn their weaknesses and how to protect them. I read that what one really needs, not just a firewall or a virus scanner, is good intrusion detection software. I am wondering if anyone knows of a good one that is free, or any that are for that matter, so that I use them in my testing and learning. I appreciate your help. If there are no free ids's then what are some good ones to purchase? Thanks.
    M$ support is like shooting yourself in the left foot and then putting a band-aid on the right one.

  2. #2
    Senior Member
    Join Date
    Sep 2001
    Posts
    1,027
    Snort (NIDS)
    www.snort.org

    Ammo
    Credit travels up, blame travels down -- The Boss

  3. #3
    AntiOnline Newbie
    Join Date
    Jun 2002
    Posts
    47
    Hello. You can go to www.webattack.com they have over 2000 freeware shareware and adons. There is lots of up to date firewalls and virus snanners also and a lots of net work stuff. Have fun and good luck.


    wortcraft

  4. #4
    Senior Member
    Join Date
    Jul 2001
    Posts
    461
    /me agrees with ammo!

    Snort is the way to go.

  5. #5
    Senior Member
    Join Date
    Apr 2002
    Posts
    712
    For free, I'd run SNORT on OpenBSD (not on Linux).

    If you are ready for a commercial application, NFR rocks (and is cheaper and much more flexible/reliable than ISS).
    \"Windows has detected that a gnat has farted in the general vicinity. You must reboot for changes to take affect. Reboot now?\"

  6. #6
    Senior Member
    Join Date
    Jun 2002
    Posts
    144
    thanks for all your suggestions....I will check them out.
    M$ support is like shooting yourself in the left foot and then putting a band-aid on the right one.

  7. #7
    Senior Member
    Join Date
    Jan 2002
    Posts
    458
    snort will work fine on any *nix. It is definately the IDS to use.

    You might find it a bit easier to install and configure on freebsd as I believe most of the development for it is done on freebsd.

  8. #8
    Junior Member
    Join Date
    Jul 2002
    Posts
    8
    Yes Snort is it. You should also get DeMarc which is a cool graphical interface with SNORT. This is the free Linux version of DeMarc: http://linux.tucows.com/internet/preview/229406.html. They just came out with a windows version and are charging like $20000 for it!

  9. #9
    Junior Member
    Join Date
    Apr 2002
    Posts
    3
    Originally posted here by TaoJones
    Yes Snort is it. You should also get DeMarc which is a cool graphical interface with SNORT. This is the free Linux version of DeMarc: http://linux.tucows.com/internet/preview/229406.html. They just came out with a windows version and are charging like $20000 for it!
    not quite right, the professional edition costs loads yes, but the personal edition for windows is as free as the personal edition for *nix.

    btw, puresecure is not only a nice graph interface for snort, it features logging to mysql, and displaying logs via a php website, plus having one central for multiple snort sensors, so it is using snort yes, yet add's some nice features on top of that ;)

    the homepage for puresecure is http://www.demarc.com
    after signing up for a free account, you can download the personal edition from this site
    \"Wisdom lies not in obtaining knowledge, but in using it in the right way\"
    - kroesjnov

    http://www.dsinet.org/alt.security.nl
    http://www.securitydatabase.net
    email: kroesjnov@clownz.internet (remove inter to reply)
    UIN: 150938962
    MSN: kroesjnov_sec@hotmail.com
    pgp ID: 0xDF154D85

  10. #10
    Junior Member
    Join Date
    Jul 2002
    Posts
    1
    Why OpenBSD and why not Linux?

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •