Industrial-Sized Deals Shop all Back to School Shop Women's Handbags Learn more nav_sap_SWP_6M_fly_beacon $5 Albums $5 Off Fire TV Stick Subscribe & Save Shop Popular Services pivdl pivdl pivdl  Amazon Echo Starting at $99 Kindle Voyage Nintendo Digital Games Shop Back to School with Amazon Back to School with Amazon Outdoor Recreation Baby Sale
Snort Intrusion Detection and Prevention Toolkit and over one million other books are available for Amazon Kindle. Learn more

Snort IDS and IPS Toolkit (Jay Beale's Open Source Security)

14 customer reviews
ISBN-13: 978-1597490993
ISBN-10: 1597490997
Why is ISBN important?
ISBN
This bar-code number lets you verify that you're getting exactly the right version or edition of a book. The 13-digit and 10-digit formats both work.
Scan an ISBN with your phone
Use the Amazon App to scan ISBNs and compare prices.
Have one to sell? Sell on Amazon
Buy new
$29.74
Usually ships within 2 to 3 weeks.
Ships from and sold by Amazon.com. Gift-wrap available.
List Price: $52.95 Save: $23.21 (44%)
26 New from $24.57
FREE Shipping on orders over $35.
Qty:1
Snort IDS and IPS Toolkit... has been added to your Cart
More Buying Choices
26 New from $24.57 27 Used from $5.24
Free%20Two-Day%20Shipping%20for%20College%20Students%20with%20Amazon%20Student


InterDesign Brand Store Awareness Rent Textbooks
$29.74 FREE Shipping on orders over $35. Usually ships within 2 to 3 weeks. Ships from and sold by Amazon.com. Gift-wrap available.

Frequently Bought Together

Snort IDS and IPS Toolkit (Jay Beale's Open Source Security) + Practical Intrusion Analysis: Prevention and Detection for the Twenty-First Century: Prevention and Detection for the Twenty-First Century + Information Security Intelligence: Cryptographic Principles & Applications
Price for all three: $151.07

Some of these items ship sooner than the others.

Buy the selected items together

NO_CONTENT_IN_FEATURE


Best Books of the Month
Best Books of the Month
Want to know our Editors' picks for the best books of the month? Browse Best Books of the Month, featuring our favorite new books in more than a dozen categories.

Product Details

  • Paperback: 768 pages
  • Publisher: Syngress (April 10, 2007)
  • Language: English
  • ISBN-10: 1597490997
  • ISBN-13: 978-1597490993
  • Product Dimensions: 8 x 1.5 x 10 inches
  • Shipping Weight: 2.4 pounds (View shipping rates and policies)
  • Average Customer Review: 4.3 out of 5 stars  See all reviews (14 customer reviews)
  • Amazon Best Sellers Rank: #307,992 in Books (See Top 100 in Books)

More About the Author

Discover books, learn about writers, read author blogs, and more.

Customer Reviews

Most Helpful Customer Reviews

37 of 40 people found the following review helpful By Richard Bejtlich on September 22, 2007
Format: Paperback
Syngress published "Snort 2.0" in Mar 03, and I gave it a four star review in Jul 03. Syngress followed with "Snort 2.1" in May 04, and I gave it a four star review in Jul 04. I recommend reading those reviews, since the latest edition -- "Snort IDS and IPS Toolkit" (SIAIT) -- makes many of the same mistakes as its predecessors. Worse, it includes material that was already outdated in BOTH previous editions. If you absolutely must buy a book on Snort, this edition is your only real choice. Otherwise, I would stick with the manual and online articles.

SIAIT looks impressive page-wise, but it suffers from the multiple-author, no-editing, rush-to-production problems unfortunately inherent in many Syngress titles. One would think that including many contributing authors (11, apparently) would make for a strong book. In reality, the book contributes very little beyond what appears in "Snort 2.1," despite the fact that "only" chapters 8, 10, 11, and 13 appear to be repeats or largely rehashes of older material. Comparing to "Snort 2.1," these compare to old chapters 7, 10, 12, and 11, respectively.

The absolute worst part of this book is the re-introduction of all the outdated information in chapters 8 and 10. It is 2007 and we are STILL reading on p 353 that XML output is "our favorite and relatively new logging format" and on p 367 that "Unified logs are the future of Snort reporting." (I cited both of these as being old news in Jul 04!) I should note that these chapters are not entirely duplicates; if you compare output such as that on page 335 of "Snort 2.1" with page 365 in SIAIT you'll see the author replaced the original 2003 timestamps with 2006! This is the height of lazy publishing.
Read more ›
2 Comments Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
6 of 6 people found the following review helpful By Kevin Blanchard on April 29, 2008
Format: Paperback Verified Purchase
I have run Snort at previous jobs and currently run it at home. I found the book to be packed with tons of valuable information and a great reference for tweaks you may want to make to your install down the road as your needs change. The only down side is that it's already "out of date" as far as current versions go. It's not so out of date that the information is irrelevant but just keep that in mind and make sure to read up on new features and bugs compared to what is listed in the book and the version you are installing.
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
7 of 8 people found the following review helpful By Jeff Pike on January 2, 2008
Format: Paperback
This is the best single book on Snort I've come across, so I bought it. I used it as reference recently to customize a Snort configuration including writing a few custom rules. It has a really good index. It can be used as an in-depth tutorial or good quality reference.

Description of Chapters:
1) Intrusion Detection Systems - A nice overview of some basics
2) Introducing Snort 2.6 - Fairly comprehensive coverage of the product
3) Installing Snort 2.6 - Good coverage of the different options.
4) Configuring Snort Add-Ons (I don't recommend snort on Windows, but whatever)
5) Inner Workings - One of the best chapters on how snort really works
6) Preprocessors - Another great chapter on the inner workings.
7) Playing by the Rules - Good coverage of snort rule syntax.
8) Snort Output Plug-Ins - Another good chapter
9) Exploring IDS Event Analysis Snort Style - Some of these add-ons are a bit dated, but it's nice to have it all in one place.
10) Optimizing Snort - Principles of Snort optimization...
11) Active Response - More useful options
12) Advanced Snort - Not much of use here for most people.
13) Mucking Around with Barnyard - It's good to at least know what Barnyard is.

At 700 plus pages, this is the best collection of Snort info around.
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
2 of 2 people found the following review helpful By Doctor Professor on January 26, 2011
Format: Paperback Verified Purchase
I needed this as a textbook and I am pleased with it. I think it is full of information and is a great reference. It is a book I won't be selling back.
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
1 of 1 people found the following review helpful By Johnny V on May 14, 2013
Format: Paperback Verified Purchase
The product description does not mention that as of 2012, the CD is no longer included. The companion website is listed on the book's back cover as [...]

I will review this book when I complete my graduate course in a few weeks.
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
1 of 1 people found the following review helpful By Database Lady on May 27, 2011
Format: Paperback Verified Purchase
Excellent overview of SNORT for those with little experience on the subject. Easy to read. Lots of examples. I would definitely recommend this book to others.
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
Format: Paperback Verified Purchase
For someone just getting introduced to SNORT this is a good book. It is comprehensive but a little outdated as it was written in 2006 and there have been many technological changes since..
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again

Want to discover more products? Check out these pages to see more: open source firewall, mysql odbc, security operation center, open source projects, active directory, network intrusion detection