Skip to main content

IDS/IPS Systems

More
16 years 4 months ago #24195 by Smurf
IDS/IPS Systems was created by Smurf
Hi all,

This is just to get everyone's input on IDS/IPS systems that are in use. I have been asked to take a look at different systems and do a quick 1 2 on differencies.

I thought a good starting point would be to see what our community are currently using....

Thanks in advance
Wayne Murphy
Firewall.cx Team Member
www.firewall.cx

Now working for a Security Company called Sec-1 Ltd in the UK, for any
Penetration Testing work visit www.sec-1.com or PM me for details.
More
16 years 4 months ago #24196 by DaLight
Replied by DaLight on topic Re: IDS/IPS Systems
Currently using Snort.
More
16 years 4 months ago #24198 by TheBishop
Replied by TheBishop on topic Re: IDS/IPS Systems
I'm snorting too
More
16 years 4 months ago #24233 by ItsHardOutThere
Replied by ItsHardOutThere on topic Re: IDS/IPS Systems
IPCop with Snort
More
16 years 4 months ago #24296 by ZiPPy
Replied by ZiPPy on topic Re: IDS/IPS Systems
I use Wireshark at work, formly known as Ethereal. I have been wanting to play with Snort for quite some time.

Here is a really good link on the top 100 Security Tools. You'll notice the top 3 are Nessus, Wireshark, and Snort.

Link:
sectools.org/

ZiPPy
ZiPPy
More
16 years 4 months ago #24402 by tiamat
Replied by tiamat on topic Re: IDS/IPS Systems
cisco 4240's in non-inline mode performing IDS.

In my opinion, it's not about what you're using for IDS, but how you analyze the traffic and tweak your filters. IDS/IPS is all about knowing your network traffic and balancing the false positives against the amount of time you have to analyze the traffic.
Time to create page: 0.151 seconds