Thursday 7 August 2008
Snort progress
One of my task now is to identifying P2P activity from the tcpdump data collected by using Snort. But somehow, there is a problem where I could't get all alert from the total data. After rerun, retry and all the re..stuff, I manage to discover that on all occasion, snort actually ignore the discarded frame. That's why the delivered output is not the one expected. Of course we discard the frames during capturing process, because of the limited space of storage. However, need to find out how to deal with the snort feature.
Subscribe to:
Post Comments (Atom)
10 comments:
are u going to enhance the snort feature??jenuh tu weed..takde tools lain yang boleh ke??nape laa snort yan 'comel' tu menjadi pujaan hati ko??huuhuu..oink..oinkk
is ko nyer phd tajuk ape? hehehe..sory salah blog..tp aku tanye gak la...
nape laa ko tanya psl aku kat blog org lain ni??kot ye laa ko tu tgh kusut..canggih laa soalan ko..ni belum finalized jd tajuk Phd lagi..aku kengkononnya nak buat "secure model for RFID ubiquitious network"..hehehe..takde laa seseram tajuk weed snort oink..oinkk..
aku satu hapah pun x phm...tau tak pe
aku takdelah nak enhance snort tuh. cuma nak guna utk validate method yg aku guna. snort kan mmg dah mcm standard tool utk IDS. apapun,rasanya aku kena carik lain kot. bro one of option.
Weed :Snort oink oink
Is : RFID
Faei : blur lagi...tau tak pe
Kami telah berpindah ke alansuz.blogspot.com. Sila updet link anda yek hehehe…TQ
weed..ko posa tak??
aku tag ko weed..tgk blog aku
salam,
weed...susahnya kan jadi student balik..
aritu aku berangan nak amik second degree in Multimedia..sbb berkait dgn business aku..tp ..blm wat keputusan lg..tunggu semua anak2 dh sekolah kot..apapun..tabahkan hati ko...buat baik2..Malaysia perlukan ramai org bijak pandai mcm ko utk mencipta Tamadun Malaysia kelak..ameen..
Post a Comment