Free and open source network intrusion prevention and detection system
Snort is a network intrusion prevention and detection system that uses a rule-driven language, which combines the benefits of protocol, signature and anomaly based inspection methods.

Snort is the most widely deployed intrusion detection and prevention technology worldwide and has become the de facto standard for the industry.

How to install and run: Unarchive, open a Terminal window, go to Snort's folder and run the following commands from the command line:

sudo make install

last updated on:
September 24th, 2013, 1:32 GMT
file size:
5 MB
developed by:
Sourcefire Inc
license type:
operating system(s):
Mac OS X
binary format:
Home \ Security


In a hurry? Add it to your Download Basket!

user rating 10



3 Screenshots
What's New in This Release:
  • src/preprocessors/Stream5/snort_stream5_tcp.c: disable all detection (not just content-base) for packets on previously blocked sessions
  • src/preprocessors/perf.c: Write perfmon entry when both packet count and time conditions are met, rather than waiting for a multiple of the packet count after the time is reached.
  • src/dynamic-preprocessors/smtp/snort_smtp.c: Stop inspection of the entire session when TLS data is present with ignore_tls_data enabled in SMTP - Check for midstream pickups and gaps when we miss server hello, and stop inspection as soon as we get client hello when ignore_tls_data is turned on
  • src/dynamic-plugins/sf_engine/sf_snort_plugin_pcre.c: changed pcre relative match with HTTP buffers to be not allowed in .so rules (same as in text rules)
read full changelog

Add your review!