New IPS Based on Modified Forks of Wireshark and Snort Merged into a Single Product

Joshi, Arjun

doi:doi:10.7939/r3-qyaq-gx28

This decommissioned ERA site remains active temporarily to support our final migration steps to https://ualberta.scholaris.ca, ERA's new home. All new collections and items, including Spring 2025 theses, are at that site. For assistance, please contact erahelp@ualberta.ca.

View

Download

Communities and Collections

Master of Science in Internetworking (MINT) / Capstone Projects & Reports (Master of Science in Internetworking (MINT))

Usage

198 views
245 downloads

New IPS Based on Modified Forks of Wireshark and Snort Merged into a Single Product

Author(s) / Creator(s)
- Joshi, Arjun
Intrusion prevention has become an extremely important feature of the Defense-in-Depth strategy. The intention of this project is to build the Linux-based open source system which functions as an IPS based on a merger/rewrite of Wireshark and Snort with IP Geolocation built in. This system should work like a wire in the network without causing much delay. Wireshark will capture and analyze every packet. It will generate basic reports for further analysis. *Publication date not found.
Date created

2021-10-04
Subjects / Keywords
Type of Item

Report
DOI

https://doi.org/10.7939/r3-qyaq-gx28
License

Attribution-NonCommercial 4.0 International

Language
- English
Additional contributors
- Rogers, Leonard (Supervisor)