29 Apr
2011
29 Apr
'11
8:59 a.m.
Snort (http://www.snort.org/) is also a nice IDS. They provide paid and free rules/signatures. -k On Fri, Apr 29, 2011 at 7:55 AM, Raymond Burkholder <ray@oneunified.net>wrote:
Can anyone suggest any open source DPI (deep packet inspection) projects?
I'll recommend Bro-IDS (http://www.bro-ids.org/) as it's what I spend my days working on. It's essentially a programming language for long term network traffic monitoring which is focused on doing deep decoding of application layer protocols. (and it's BSD licensed!)
http://l7-filter.sourceforge.net/ might be another candidate.
-- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.