Home > What is the difference between Snort and Bro?
FAQ:
EMAIL THIS LICENSING & REPRINTS

What is the difference between Snort and Bro?

14 Jan 2008 | SearchSecurityChannel.com

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   

About the author
Richard Bejtlich is director of incident response at General Electric Company in Manassas, Va. and blogs at Bejtlich.net and TaoSecurity.com. Listen to the rest of Richard's answers on Snort by downloading our Snort podcast.
Bro is the only other real open source network intrusion detection system supported by a significant community of users. Vern Paxson of the University of California at Berkeley is the lead developer. Bro is considered a specification-based network IDS. Bro uses a variety of protocol analysis modules to inspect traffic and make judgments regarding its conformance to various norms. It is actually a very powerful complement to Snort.

Return to the Snort FAQ guide and read the rest of Richard's expert responses.

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


RELATED CONTENT
What is Snort?
Why is the Snort IDS still alive and thriving?
Is Snort right for the IDS needs of all clients?
How does Snort's flavor of intrusion detection work?

Network Intrusion Detection and Prevention
Using SnortSP and Snort 2.8.2
The power of Snort 3.0
OSSEC Host-Based Intrusion Detection Guide
Downloading OSSEC HIDS
Performing local installation
Installing the Windows agent
Summary and FAQs
Streamlining the installations
Performing server agent installations
How to find new features in Snort 2.8.2

Open Source Security Software
Network session data analysis with Snort and Argus
How to use shared object rules in Snort
Why is the Snort IDS still alive and thriving?
Is Snort right for the IDS needs of all clients?
Will deploying Snort detect malicious events quickly?
How can the operator test Snort?
How can I learn more about Snort?
What does the future hold for Snort?
What extra functionality do Snort add-ons provide?
Does Snort support target-based intrusion detection?

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary


HomeTopicsITKnowledge ExchangeTipsMultimediaWhite PapersBlogsEvents
About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
SEARCH 
TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Reprints  |  Site Map




All Rights Reserved, Copyright 2006 - 2008, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts