Skip to Content
IDS and IPS with Snort 3
book

IDS and IPS with Snort 3

by Ashley Thomas
September 2024
Beginner content levelBeginner
256 pages
6h 24m
English
Packt Publishing
Content preview from IDS and IPS with Snort 3

8

Inspectors

The Snort 3 system performs in-depth analysis for a wide range of network protocols. It does traffic analysis on Protocol Data Units (PDUs) rather than packets. This protocol analysis logic is implemented as pluggable modules called inspectors.

Inspectors, as the backbone of Snort 3, play a pivotal role in its functioning. From a functionality standpoint, inspectors can be seen like the preprocessors in Snort 2. In other words, inspectors may be considered the successor of the preprocessor.

Snort 3 has a modular architecture, and each inspector is implemented as a plugin. Before we delve into the various modules implemented as inspectors, we should discuss inspectors in general. In this chapter, we’re going to cover the following ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Web Penetration Testing with Kali Linux - Third Edition

Web Penetration Testing with Kali Linux - Third Edition

Daniel W. Dieterle, Gilberto Najera-Gutierrez, Juned Ahmed Ansari
Windows Security Monitoring

Windows Security Monitoring

Andrei Miroshnikov

Publisher Resources

ISBN: 9781800566163Supplemental Content