snort
Open-source network intrusion detection system. More information: https://www.snort.org/#documents.
-
Capture packets with verbose output:
sudo snort -v -i {{interface}}
-
Capture packets and dump application layer data with verbose output:
sudo snort -vd -i {{interface}}
-
Capture packets and display link layer packet headers with verbose output:
sudo snort -ve -i {{interface}}
-
Capture packets and save them in the specified directory:
sudo snort -i {{interface}} -l {{path/to/directory}}
-
Capture packets according to rules and save offending packets along with alerts:
sudo snort -i {{interface}} -c {{path/to/rules.conf}} -l {{path/to/directory}}
License and Disclaimer
The content on this page is copyright © 2014—present the tldr-pages team and contributors.This page is used with permission under Creative Commons Attribution 4.0 International License.
While we do attempt to make sure content is accurate, there isn't a warranty of any kind.