首页 | 本学科首页   官方微博 | 高级检索  
     

Snort1.8检测规则语法的分析
引用本文:李凤华,杨懿. Snort1.8检测规则语法的分析[J]. 北京电子科技学院学报, 2003, 11(2): 15-18
作者姓名:李凤华  杨懿
作者单位:北京电子科技学院计算机科学与技术系,北京,100070;重庆市公安局,重庆,630001
摘    要:本文分析了跨平台、轻量级的网络入侵检测系统Snort1.8使用的检测引擎的规则语法,说明了Snort1.8如何合理组织这些规则来描述和解释攻击行为,并通过对Content关键字匹配范围的统计,指出加速和自行扩展Snort1.8的方法。

关 键 词:Snort1.8  入侵检测  检测规则语法
文章编号:1672-464X(2003)02-0015-04
修稿时间:2003-08-12

An Analysis of the Detection Rules Syntax in Snort 1.8
Li Feng-hua,Yang Yi. An Analysis of the Detection Rules Syntax in Snort 1.8[J]. Journal of Beijing Electronic Science & Technology Institute, 2003, 11(2): 15-18
Authors:Li Feng-hua  Yang Yi
Abstract:This paper analyzed the rules of the detection engine of Network Intrusion Detection System Snort 1.8, known as a cross-platform, lightweight network intrusion detection system, and showed how the Snort uses these rules to describe and explain invasions from other Systems. A way has been found to speed and extend Snort 1.8 by statistics of matching Content keywords.
Keywords:Snort 1.8  Intrusion Detection (ID)  Detection Rules Syntax
本文献已被 CNKI 维普 万方数据 等数据库收录!
设为首页 | 免责声明 | 关于勤云 | 加入收藏

Copyright©北京勤云科技发展有限公司  京ICP备09084417号