Snort IDS

Version : Snort 2.9 and later.

Snort IDS is an open-source intrusion detection system that analyze network traffics in real-time and provides data packet logging. It detects potentially malicious activities by employing a rule-based language that integrates anomaly, protocol, and signature inspection methods.

Netsurion Open XDR monitors Snort events retrieved via syslog. Dashboard, category, alerts, and reports in Netsurion Open XDR will benefit you in tracking possible attacks, suspicious activities, or any other threat based on rules defined in the Snort configuration file.

Netsurion Data Source Integrations for Snort IDS allows you to monitor the following components:

  • Security – Alerts and Reports for all security-related events.

Once Snort IDS auditing is enabled and Snort IDS logs are received in Netsurion Open XDR, configure alerts and reports.

To take advantage of this data source integration and to learn more about alerts, reports, and dashboards, contact your Technical Account Manager (TAM). If you are not currently a Netsurion customer or partner, contact us to learn more.