Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

fondamental software for detection intrusion and virus


  • Please log in to reply
3 replies to this topic

#1 000

000

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:01:26 PM

Posted 06 November 2014 - 02:33 AM

I noticed  that no mention of network analyzer  IDS , NIDS , HIDS  software , for me in these times is fondamental for detect intrusion and virus , for know  in detail what happens on your computer.

in essence you can hear all communications to your computer and the answers, read the packet  and whic computers are connected ip and host  mac adress  ecc... and what they do.

i have used colasoft freee network analyzer in the past I recommend it exist one free version very complete.

I wish microsoft would put in windows 10 along with a good firewall would be great

 

 

http://en.wikipedia.org/wiki/Intrusion_detection_system    IDS software

 

 

http://en.wikipedia.org/wiki/Network_intrusion_detection_system  NIDS 

 

 

http://en.wikipedia.org/wiki/Host-based_intrusion_detection_system        for example eset smart security  use HIDS and firewall  that  intercept also exploit hacker and some other security problem



BC AdBot (Login to Remove)

 


#2 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,717 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:26 PM

Posted 06 November 2014 - 04:47 PM

The leading open source NIDS are Snort and Suricata. But it's not something I would recommend to less experienced users.


Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Senior Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2019
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"


#3 000

000
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:01:26 PM

Posted 07 November 2014 - 06:43 PM

thanks  I want try suricata  , or alternatively if anyone is curious something more simple is wireshark .



#4 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,717 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:26 PM

Posted 07 November 2014 - 07:45 PM

Wireshark is an excellent tool, the best in its category according to me, but it is not an IDS.

Wireshark is a packet sniffer/analyzer.

Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Senior Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2019
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users