Share your story
The central voice for Linux and Open Source security news
Home News Topics Advisories HOWTOs Features Newsletters About Register

Sign up!
EnGarde Community
What is the most important Linux security technology?
Linux Events
Linux User Groups
Link to Us
Security Center
Book Reviews
Security Dictionary
Security Tips
White Papers
Featured Blogs
All About Linux
DanWalsh LiveJournal
Latest Newsletters
Linux Advisory Watch: December 12th, 2014
Linux Security Week: December 9th, 2014
LinuxSecurity Newsletters
Choose Lists:
About our Newsletters
RSS Feeds
Get the LinuxSecurity news you want faster with RSS
Powered By

Intrusion Detection
We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.

Abnormal IP Packets  16 October 2000 
Source: - Posted by Ryan W. Maple   
This article is a very good introduction to the basics IP packets. "This article, a discussion of the characteristics of abnormal Internet Protocol (IP) packets, is the first in a series of tutorials that are intended to educate intrusion detection system . . .
Intrusion Detection Level Analysis of Nmap and Queso  31 August 2000 
Source: Security Focus - Posted by Benjamin D. Thomas   
The purpose of this paper is to help Intrusion detection analysts and firewall administrators identify NMAP & QUESO scans. This paper will provide bit level analysis in detecting NMAP and QUESO scans. This type of analysis is vital for individuals who are performing firewall administration and need to understand more details relating to these scanners and the scans they perform.. . .
The Coroner's Toolkit  05 August 2000 
Source: RootPrompt - Posted by Dave Wreski   
Wietse Venema and Dan Farmer the authors of SATAN have written a package called The Coroner's Toolkit that is designed to help a System Administrator do forensic analysis on their cracked Unix box.
The Coroner's Toolkit  04 August 2000 
Source: - Posted by Benjamin D. Thomas   
"I found this to be a very useful package of tools that gives you a good snapshot of the state of a compromised machine. While not being designed for a newbie it would still allow a less experienced Admin to collect the data so that someone with more experience could look at later. " . . .
Detecting network intrusions  02 August 2000 
Source: - Posted by Dave Wreski   
Detecting network intrusions is an important element of an enterprise security strategy. SecureNet Pro software is a new and sophisticated network intrusion detection system (NIDS) that combines 100 Mbps performance with key technologies to ensure attacks are recognized - and thwarted.. . .
The Coroner's Toolkit (TCT)  01 August 2000 
Source: Dan Farmer and Wietse Venema - Posted by Dave Wreski   
The creators of SATAN and other invaluable security tools over the years have create The Coroner's Toolkit. Wietse Venema states in his bugtraq post, "It is with great relief that we announce the first official release of the Coroner's Toolkit software, . . .
Cracked! Part 7: The Cracker's Revenge  12 July 2000 
Source: - Posted by Benjamin D. Thomas   
In this article I explain what the Cracker did when he broke back in, our recovery from this, talking to the cracker afterwards and bring the story to a close. "Early one morning I had either just gotten up or . . .
Snort 1.6.2 Released  09 July 2000 
Source: - Posted by Dave Wreski   
Snort is a lightweight network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks . . .
The Motives and Psychology of the Black-hat Community  26 June 2000 
Source: SecurityFocus - Posted by Dave Wreski   
This paper is a continuation of the Know Your Enemy series. This series is dedicated to learning the tools and tactics of the black-hat community. Unlike the previous papers which focused purely on the "what" and "how" of the black-hat community, . . .
Knowing when someone is knocking on your door.  26 June 2000 
Source: Lance Spitzner - Posted by Benjamin D. Thomas   
Lance E. Spitzner tells us how you can protect yourself by detecting intrusion attempts and then covers what you can do about them. This article will discuss how you can protect yourself by detecting these intrusion attempts. I will then cover . . .
<< Start < Prev 82 83 84 Next > End >>

Results 811 - 820 of 834


Latest Features
Peter Smith Releases Linux Network Security Online
Securing a Linux Web Server
Password guessing with Medusa 2.0
Password guessing as an attack vector
Squid and Digest Authentication
Squid and Basic Authentication
Demystifying the Chinese Hacking Industry: Earning 6 Million a Night
Free Online security course (LearnSIA) - A Call for Help
What You Need to Know About Linux Rootkits
Review: A Practical Guide to Fedora and Red Hat Enterprise Linux - Fifth Edition
Yesterday's Edition
The Difference Between Wi-Fi Security Protocols: WPA2-AES vs WPA2-TKIP
Segmenting for security: Five steps to protect your network
Partner Sponsor

Community | HOWTOs | Blogs | Features | Book Reviews | Networking
 Security Projects |  Latest News |  Newsletters |  SELinux |  Privacy |  Home
 Hardening |   About Us |   Advertise |   Legal Notice |   RSS |   Guardian Digital
(c)Copyright 2014 Guardian Digital, Inc. All rights reserved.