Snort mailing list archives
Re: whether wireshark can be integrated with snort??
From: Stephen Mullins <steve.mullins.work () gmail com>
Date: Sat, 23 May 2009 16:04:45 -0400
I would suggest you use Sguil with Snort and you can launch wireshark from Sguil if needed. Or you could use an inline network TAP on the cable running from the SPAN port to the Wireshark box to "split" the signal so it goes to both the Snort sensor and the Wireshark box. Steve Mullins On Tue, May 19, 2009 at 12:01 PM, Sadanand Ghagare <sadanandgh () gmail com> wrote:
Hi We are in process to implement snort as network sensor in our network. But problem here is, we already have wireshark machine connected to monitoring port of switch and we don't want to disturb existing setup. So whether it is possible to integrate snort with wireshark so that snort can analyze the packets captured by wireshark as per snort rule base. If yes, how to configure it. I hope I am up to the point for my requirements. -- Thanks & Regards Sadanand G. ------------------------------------------------------------------------------ Crystal Reports - New Free Runtime and 30 Day Trial Check out the new simplified licensing option that enables unlimited royalty-free distribution of the report engine for externally facing server and web deployment. http://p.sf.net/sfu/businessobjects _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
------------------------------------------------------------------------------ Register Now for Creativity and Technology (CaT), June 3rd, NYC. CaT is a gathering of tech-side developers & brand creativity professionals. Meet the minds behind Google Creative Lab, Visual Complexity, Processing, & iPhoneDevCamp asthey present alongside digital heavyweights like Barbarian Group, R/GA, & Big Spaceship. http://www.creativitycat.com _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- whether wireshark can be integrated with snort?? Sadanand Ghagare (May 19)
- Re: whether wireshark can be integrated with snort?? Joel Esler (May 19)
- Re: whether wireshark can be integrated with snort?? Sadanand Ghagare (May 19)
- Re: whether wireshark can be integrated with snort?? Stephen Mullins (May 23)
- Re: whether wireshark can be integrated with snort?? Nigel Houghton (May 24)
- Re: whether wireshark can be integrated with snort?? Sadanand Ghagare (May 25)
- Re: whether wireshark can be integrated with snort?? Nigel Houghton (May 25)
- Re: whether wireshark can be integrated with snort?? Nigel Houghton (May 24)
- Re: whether wireshark can be integrated with snort?? Joel Esler (May 19)