The inline IPS/IDS system of OSIgate is based on Suricata/Snort and WebCache/Netmap to enhance performance and minimize CPU utilization. This Deep Packet Inspection system is very powerful and can be used to mitigate security threats at wire speed.

R&D Report

1. IDS/IPS  Performance and Throughput research. [ask]
2. Snort performance research. [ask]
3. IDS/IPS performance overhead research. [ask]

click to see more about Ransomware protection

Cisco Snort: The World’s Most Widely Deployed IDS/IPS Technology

Overview

Martin Roesch, the founder of Sourcefire and chief security architect at Cisco, created Snort^® in 1998. Snort is an open-source, rule-based, intrusion detection and prevention system. It combines the benefits of signature-, protocol-, and anomaly-based inspection methods to deliver flexible protection from malware attacks. Snort gained notoriety for being able to accurately detect threats at high speeds. With nearly 4 million downloads and hundreds of thousands of registered users, Snort is the most widely deployed IPS technology in the world.

Benefits for OSIgate users

Cisco Snort’s open-source development methodology offers three main benefits:

●   Rapid response: Protect your environment from emerging attacks quickly using Snort to customize and enforce your own security rules. Protect from threats you haven’t even seen through the Cisco^® Talos Security Intelligence and Research Group (Talos). Talos writes Snort rules every hour of the day to combat new and evolving threats.

●   Greater accuracy: Strengthen your security without doing a thing. The worldwide Snort community continually reviews, tests, and offers improvements to the Snort source code. Benefit from the collective knowledge of security teams around the world as they suggest changes.

●   High adaptability: Employ the Snort system as a foundation for creating your own unique network security solutions. With ready access to source code and documentation, you can add your own functions to Snort.