Cov cuab yeej los saib xyuas koj lub network rau tej yam txawv txaij lossis siab phem
Kev Tshawb Pom Tawm Qhov Kev Tawm Tawm (IDS) raug tsim los ntawm qhov kev tshwm sim ntawm kev tawm tsam ntau ntawm cov tes hauj lwm. Feem ntau, IDS software tshawb xyuas cov ntaub ntawv teev npe rau cov kev pheej yig, cov ntaub ntawv lo lus password rau cov passwords thiab lwm thaj chaw kom paub txog kev ua txhaum uas yuav ua rau muaj kev puas tsuaj rau lub network. Nws kuj tau teev cov kev sib txuas lus rau kev sib koom tes rau cov kev ua ub no thiab tej yam kev tawm tsam thiab qhia lawv mus rau ib tug neeg khiav dej num. Ib daim IDS zoo ib yam li ib lub firewall, tab sis ntxiv rau kev tiv thaiv tawm tsam tawm sab nraud lub network, IDS qhia txog tej yam txawv txav thiab kev tawm tsam hauv qhov system.
Qee tus IDS software kuj tuaj yeem teb rau cov kev nkag teeb meem. Software uas teb tau yog feem ntau hu ua "Intrusion Prevention System (IPS) software. Nws paub thiab teb rau cov kev hem thawj, tom qab lub cev loj ntawm cov txheej xwm.
Feem ntau, ib daim IDS qhia koj tias dab tsi tshwm sim, thaum IPS ua rau cov kev hem paub. Qee cov khoom siv ob qho tib si. Ntawm no yog ob peb dawb IDS thiab IPS software kev xaiv.
Snort rau lub qhov rais
Snort for Windows yog ib qhov chaw qhib qhov network tshawb nrhiav qhov system, muaj peev xwm ua tau lub sijhawm ntawm kev sib tsoo thiab cov ntawv ntim ntawm IP networks. Nws tuaj yeem ua raws tu qauv, cov ntsiab lus tshawb nrhiav / sib piv thiab siv tau los mus xyuas txog ntau yam kev tawm tsam thiab kev sib thab, xws li kev tsis sib haum, kev sib tw ntawm kev nyab xeeb, CGI tawm tsam, SMB probes, OS ntiv tes sim thiab ntau yam ntxiv.
Suricata
Suricata yog qhib qhov software uas tau raug hu ua "Snort on steroids." Nws muab txoj kev nrhiav pom tseeb ntawm lub sijhawm, kev tiv thaiv ntawm kev tawm tsam, thiab kev saib xyuas network. Suricata siv cov kev cai thiab cov lus kos npe thiab Lua scripting kom paub txog txoj kev ntshai. Nws muaj nyob rau Linux, macOS, Windows thiab lwm lub platforms. Lub software yog pub dawb xwb, thiab muaj ntau qhov kev pab cuam raws li cov kev cobqhia ntawm tsoomfwv txhua lub sijhawm rau kev tsim tawm. Kev koom cov kev cob qhia tshwj xeeb kuj muaj nyob rau ntawm Open Information Security Foundation (OISF), uas yog tswv ntawm Suricata code.
Bro IDS
Bro IDS feem ntau tau muab tso ua ke nrog Snort. Bro lub npe ntawm hom lus tsis cia siab rau cov npe txwm. Nws teev txhua yam nws pom hauv qib high-theem network kev ua ub no. Qhov software yog qhov tseem ceeb tshaj rau kev sib tw khiav tsheb thiab muaj keeb kwm siv nyob rau hauv kev kawm cov kev kawm, cov tsev kawm ntawv loj, cov chaw pabcuam supercomputing thiab cov kev tshawb nrhiav tshawb nrhiav kev ruaj ntseg. Bro Project yog ib feem ntawm Software Freedom Conservancy.
Ua ntej OSS
Prelude OSS yog qhov qhib qhov version ntawm Prelude Siem, lub zog tshiab tshawb nrhiav kev tsim kho uas tsim los ua qauv, muab faib, pob zeb thiab ceev ceev. Prelude OSS yog tsim nyog rau cov kev txwv-tsawg IT infrastructure, cov koom haum tshawb nrhiav thiab kev cob qhia. Nws tsis yog npaj rau cov lag luam loj lossis loj. Prelude OSS kev kawm tsuas yog siv tau tab sis yog ib qho qhia txog rau kev lag luam version.
Malware Tus Tiv Thaiv
Malware Tus Tsav Xwm yog ib qhov kev pab cuam IPS dawb tshaj-IPS nrog kev tiv thaiv network rau cov neeg siv kev tshaj lij. Nws saib xyuas kev tiv thaiv ntawm kev tiv thaiv thiab kev tiv thaiv malware. Nws zoo haum rau kev siv hauv tsev, txawm tias cov khoom siv qhia ntawv nyuaj rau cov neeg siv nruab nrab kom to taub. Yav tas los ib qho kev lag luam, Malware Defender yog ib qho kev tiv thaiv kev tawm tsam (HIPS) uas tsom kwm ib tus tswv tsev rau tej yam txawv txav.