1 Snort is a libpcap-based packet sniffer/logger which can be used
2 as a lightweight network intrusion detection system. It features
3 rules based logging and can perform protocol analysis, content
4 searching/matching and can be used to detect a variety of attacks
5 and probes, such as buffer overflows, stealth port scans, CGI
6 attacks, SMB probes, OS fingerprinting attempts, and much more.
8 Snort has a real-time alerting capability, with alerts being sent
9 to syslog or a separate "alert" file. As of version 1.1 it can
10 also send WinPopup messages via Samba.