You need a tool that can do network intrusion prevention and intrusion detection, function as a network sniffer, and record network activity. What tool would you most likely select?
Snort is an open-source Network Intrusion Detection and Prevention System (NIDS/NIPS) capable of real-time traffic analysis and packet logging. It functions as a sniffer and can detect various forms of attacks using signature-based rules.
CEH v13 Reference:
Module 10: Evading IDS, Firewalls, and Honeypots
"Snort can operate as a sniffer, logger, or full NIDS capable of real-time traffic analysis."
━━━━━━━━━━━━━━━━━━━━━━
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit