Le plugin Snort, vous permet de lister les alertes provenant de Snort qui sont contenues dans la base de donnée de B.A.S.E et de Snort.

Qu'est ce que Snort ? http://www.snort.org/

Snort® is an open source network intrusion prevention and detection system utilizing a rule-driven language, which combines the benefits of signature, protocol and anomaly based inspection methods. With millions of downloads to date, Snort is the most widely deployed intrusion detection and prevention technology worldwide and has become the de facto standard for the industry.

Qu'est ce que B.A.S.E ? http://base.secureideas.net/

BASE is the Basic Analysis and Security Engine. It is based on the code from the Analysis Console for Intrusion Databases (ACID) project. This application provides a web front-end to query and analyze the alerts coming from a SNORT IDS system.

Configuration :

Utilisation :