Audience

IT teams searching for a network detection and prevention solution

About Snort

Snort is the foremost Open Source Intrusion Prevention System (IPS) in the world. Snort IPS uses a series of rules that help define malicious network activity and uses those rules to find packets that match against them and generates alerts for users. Snort can be deployed inline to stop these packets, as well. Snort has three primary uses: As a packet sniffer like tcpdump, as a packet logger — which is useful for network traffic debugging, or it can be used as a full-blown network intrusion prevention system. Snort can be downloaded and configured for personal and business use alike. Once downloaded and configured, Snort rules are distributed in two sets: The “Community Ruleset” and the “Snort Subscriber Ruleset.” The Snort Subscriber Ruleset is developed, tested, and approved by Cisco Talos. Subscribers to the Snort Subscriber Ruleset will receive the ruleset in real-time as they are released to Cisco customers.

Other Popular Alternatives & Related Software
Paessler PRTG
Paessler PRTG
(110 Ratings)
Paessler PRTG is an all-inclusive monitoring software solution developed by Paessler. Equipped with an easy-to-use, intuitive interface with a cutting-edge monitoring engine, PRTG optimizes connections and workloads as well as reduces operational costs by avoiding outages while saving time and controlling service level agreements (SLAs). The solution is packed with specialized monitoring features that include flexible alerting, cluster failover solution, distributed monitoring, in-depth reporting, maps and dashboards, and more. PRTG monitors your entire IT infrastructure. All important technologies are supported: • SNMP: ready-to-use and custom options • WMI and Windows Performance Counters • SSH: for Linux/Unix and macOS systems • Traffic analysis using flow protocols or packet sniffing • HTTP requests • REST APIs returning XML or JSON • Ping, SQL, and many more
Learn more
Suricata
Suricata
The Suricata engine is capable of real time intrusion detection (IDS), inline intrusion prevention (IPS), network security monitoring (NSM) and offline pcap processing. Suricata inspects the network traffic using a powerful and extensive rules and signature language, and has powerful Lua scripting support for detection of complex threats. With standard input and output formats like YAML and JSON integrations with tools like existing SIEMs, Splunk, Logstash/Elasticsearch, Kibana, and other database become effortless. Suricata’s fast paced community driven development focuses on security, usability and efficiency. The Suricata project and code is owned and supported by the Open Information Security Foundation (OISF), a non-profit foundation committed to ensuring Suricata’s development and sustained success as an open source project.
Learn more
Security Onion
Security Onion
Security Onion is a comprehensive open source platform for intrusion detection, network security monitoring, and log management. It provides a set of powerful tools to help security professionals detect and respond to potential threats across an organization's network. Security Onion integrates various technologies, including Suricata, Zeek, and Elastic Stack, to collect, analyze, and visualize security data in real-time. Security Onion’s intuitive user interface allows for easy management and analysis of network traffic, security alerts, and system logs. It also includes built-in tools for threat hunting, alert triage, and forensic analysis, helping users identify potential security incidents quickly. Security Onion is designed for scalability, making it suitable for environments of all sizes, from small businesses to large enterprises.
Learn more
Wireshark
Wireshark
Wireshark is the world’s foremost and widely-used network protocol analyzer. It lets you see what’s happening on your network at a microscopic level and is the de facto (and often de jure) standard across many commercial and non-profit enterprises, government agencies, and educational institutions. Wireshark development thrives thanks to the volunteer contributions of networking experts around the globe and is the continuation of a project started by Gerald Combs in 1998. Wireshark® is a network protocol analyzer. It lets you capture and interactively browse the traffic running on a computer network. It has a rich and powerful feature set and is world’s most popular tool of its kind. It runs on most computing platforms including Windows, macOS, Linux, and UNIX. Network professionals, security experts, developers, and educators around the world use it regularly. It is freely available as open source, and is released under the GNU General Public License version 2.
Learn more

Integrations

See Integrations

Ratings/Reviews - 1 User Review

Overall 5.0 / 5
ease 3.0 / 5
features 5.0 / 5
design 5.0 / 5
support 5.0 / 5
More Reviews Write a Review

Company Information

Cisco
Founded: 1984
United States
www.snort.org

Videos and Screen Captures

Snort Screenshot 1
Snort Screenshot 1
Other Useful Business Software
The All-in-One Commerce Platform for Businesses - Shopify Icon
The All-in-One Commerce Platform for Businesses - Shopify

Shopify offers plans for anyone that wants to sell products online and build an ecommerce store, small to mid-sized businesses as well as enterprise

Shopify is a leading all-in-one commerce platform that enables businesses to start, build, and grow their online and physical stores. It offers tools to create customized websites, manage inventory, process payments, and sell across multiple channels including online, in-person, wholesale, and global markets. The platform includes integrated marketing tools, analytics, and customer engagement features to help merchants reach and retain customers. Shopify supports thousands of third-party apps and offers developer-friendly APIs for custom solutions. With world-class checkout technology, Shopify powers over 150 million high-intent shoppers worldwide. Its reliable, scalable infrastructure ensures fast performance and seamless operations at any business size.
Learn More

Product Details

Platforms Supported
Cloud
Training
Documentation
Videos
Support
Online

Snort Frequently Asked Questions

Q: What kinds of users and organization types does Snort work with?
Q: What languages does Snort support in their product?
Q: What kind of support options does Snort offer?
Q: What other applications or services does Snort integrate with?
Q: What type of training does Snort provide?

Snort Product Features

Snort Additional Categories

Snort Verified User Reviews

Write a Review
  • Brandon M.
    Volunteer IT
    Used the software for: 2+ Years
    Frequency of Use: Daily
    User Role: User, Administrator
    Company Size: 1 - 25
    Design
    Ease
    Features
    Pricing
    Support
    Probability You Would Recommend?
    1 2 3 4 5 6 7 8 9 10

    "Snort it whoops the llamas butt"

    Posted 2023-11-20

    Pros: Free for any platform not just the web.
    Has multiple different filter lists to learn about and choose from based off of your needs.

    Cons: A little bit of a pain to set up on windows if you don't know how to use command prompt.

    Overall: Snort has been around for ages and is a IDS that I trust when I had a IPCop firewall I had snort enabled with my Oink code, when I ran Pfsense I had snort enabled as well.
    You don't need those firewall OSes to run snort but it helps overall to have a strong firewall ruleset to backup the IDS filters that snort has.

    Read More...
  • Previous
  • You're on page 1
  • Next