Snort mailing list archives

Re: Question about Artificial Neural Networks, Preprocessors and Snort

From: Russ <rucombs () cisco com>
Date: Tue, 11 Apr 2017 12:58:19 -0400

First recommendation is to use Snort++.  You will have an easier time 
getting something running and it will be easier to tweak if necessary to 
support your needs.  This is a wide open question, so it would help to 
know what kind of data you want to feed your ANN (raw packets or PDUs, 
etc.).

On 4/10/17 12:53 PM, Luan Utimura wrote:

Hello everybody,

For a college final project, I'm thinking about creating a system where I can use ANN to classify what type of 
attacks my network could be suffering based on it's packets informations. At the moment, considering I'm a complete 
newbie w/ Snort, the methodology would consist of developing a Snort Preprocessor, with a ANN implemented in it.

Is it the best way to approach this problem? Or is it even possible to do the way I just described to you guys?
Feel free to leave your suggestions.

Thanks in advance,
Nthg.
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!



------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!

Current thread:

Question about Artificial Neural Networks, Preprocessors and Snort Luan Utimura (Apr 10)
- Re: Question about Artificial Neural Networks, Preprocessors and Snort Russ (Apr 11)
  - Re: Question about Artificial Neural Networks, Preprocessors and Snort Luan Utimura (Apr 12)
    - Re: Question about Artificial Neural Networks, Preprocessors and Snort Marcin Dulak (Apr 12)