Snort

Snort is a network-based intrusion detection and prevention system written in C. Snort sniffs network packets on the wire, analyzes packet contents against known attack signatures, and logs any suspicious activities and potential intrusion […]

 

Bro

Bro is an open-source network monitoring and intrusion detection system written in C++. Bro collects live packets via the libpcap interface, analyzes packet contents, generates events from the analysis, and performs various actions based […]

 

Wireshark

Wireshark is a GUI-based packet sniffing and analyzer tool which captures live packets from a network interface, dissect their protocols, and displays packet contents in human-readable format. Wireshark relies on libpcap/WinPcap library for packet […]

 

tcpdump

tcpdump is a command-line packet sniffing and protocol analyzer tool writtin in C/C++. It captures live RX/TX packets on a network interface in promiscuous mode, and displays the content of the packets in a […]

 

Suricata

Suricata is an open-source intrusion detection and prevention system (IDS/IPS) developed by the Open Information Security Foundation (OISF). It features a modularized and multi-threaded architecture consisting of packet capture, decode, stream assembly, detection, and […]