01048nas a2200181 4500000000100000008004100001653001800042653002400060653002400084653001900108100002400127700002000151700001900171245007700190300001100267490000700278520058100285 2021 d10aCybersecurity10aheuristic algorithm10aintrusion detection10anetwork attack1 aBartłomiej Gdowski1 aRafał Kościej1 aMarcin Niemiec00aHeuristic-based Intrusion Detection Functionality in a Snort Environment a23-36 0 v503 a
This article provides an introduction to intrusion detection systems, focusing on extending the Snort environment’s functionalities by adding a new heuristic detection algorithm. The algorithm allows to detect selected types of cyberattacks through analysis of received packets and based on a list of malicious Internet Protocol addresses. Furthermore, the algorithm underwent functional verification. The results confirmed that the algorithm successfully detects the packets originating from the provided list and rates them accordingly.