Wider attack surface coverage powered by hundreds of integrations and deeper threat visibility powered by thousands of detections.
Version : Snort 2.9 and later.
Snort IDS is an open-source intrusion detection system that analyze network traffics in real-time and provides data packet logging. It detects potentially malicious activities by employing a rule-based language that integrates anomaly, protocol, and signature inspection methods.
Netsurion's Open XDR platform monitors Snort events retrieved via syslog. Dashboard, category, alerts, and reports in Netsurion's Open XDR platform will benefit you in tracking possible attacks, suspicious activities, or any other threat based on rules defined in the Snort configuration file.
Netsurion Data Source Integrations for Snort IDS allows you to monitor the following components:
Once Snort IDS auditing is enabled and Snort IDS logs are received in Netsurion, configure alerts and reports.
The configuration details are consistent with Netsurion version 9.2 or later, and Snort 2.9 and later.
Download Integration Guide and How-to Guide for more information and to configuration instructions.