Amathuluzi wokuqapha inethiwekhi yakho yomsebenzi osolisayo noma ononya
Izinhlelo zokuThola ukuHlanganisa (IDS) zakhiwe ngokuphendula imvamisa ekhulayo yokuhlasela kumanethiwekhi. Ngokuvamile, isofthiwe ye-IDS ihlola amafayela wokumisa amahostela ngezilungiselelo eziyingozi, amafayili ephasiwedi amaphasiwedi osolwayo kanye nezinye izindawo ukuthola ukuphulwa okungaba yingozi kwinethiwekhi. Iphinde ifake izindlela ezenzelwe inethiwekhi ukurekhoda imisebenzi esolisayo nezindlela zokuhlasela ezingahle futhi zibike kumqondisi. I-IDS ifana ne-firewall, kodwa ngaphezu kokuqapha ukuhlasela okuvela ngaphandle kwenethiwekhi, i-IDS ikhomba umsebenzi osolisayo nokuhlaselwa okuvela ngaphakathi kwistimu.
Isofthiwe ye-IDS ingabuye iphinde isabele ezinhlosweni ezitholayo. Isofthiwe engayiphendula ivame ukubizwa ngokuthi i-Intrusion Prevention System (IPS) software. Iqaphela futhi isabela ezinsongweni eziyaziwayo, ngokulandela umzimba omkhulu wemigomo.
Ngokuvamile, i-IDS ikukhombisa ukuthi kwenzekani, kuyilapho i-IPS isebenza ezinsongweni ezaziwayo. Ezinye imikhiqizo zihlanganisa zonke izici. Nazi ezinye izinketho ze-IDS zamahhala nezinketho ze-IPS.
Snort for Windows
I-Snort ye-Windows iyisistimu yokuthola inethiwekhi yokuvula intrusion evulekile, ekwazi ukwenza ukuhlaziywa kwe-traffic real-time kanye nepakethe ekungeneni kwamanethiwekhi we-IP. Kungenza ukuhlaziywa kweprotocol, ukusesha okuqukethwe / ukufaniswa futhi kungasetshenziswa ukuthola izinhlobo ezihlukahlukene zokuhlaselwa kanye nezindleko, njengokungena kwebhokisi, ukuhlaselwa kwe-port, ukuhlaselwa kwe-CGI, i-SMB probes, imizamo yokunyathelisa imiyalezo ye-OS nokuningi okuningi.
I-Suricata
I-Suricata yi-software yomthombo ovulekile oye wabizwa ngokuthi "Snort on steroids." Ihlinzeka ukutholakala kwangempela kwe-intrusion, ukuvimbela ukungena ngaphakathi, nokuqapha kwenethiwekhi. I-Suricata isebenzisa imithetho nezilimi zesignesha kanye ne-Lua scripting ukuthola izinsongo eziyinkimbinkimbi. Itholakala ku-Linux, i-MacOS, iWindows namanye amapulatifomu. Isofthiwe ikhululekile, futhi kukhona imicimbi eminingi yokuqeqesha yomphakathi ekhokhwa imali ehlelwe minyaka yonke ukuqeqeshwa kanjiniyela. Izenzakalo zokuqeqeshwa ezizinikezele nazo ziyatholakala kusukela ku-Open Information Security Foundation (OISF), ene-Suricata ikhodi.
I-ID ye-Bro
I-ID ye-Bro iyadluliselwa ngokuhlanganyela no-Snort. Ulimi luka-Bro oluqondene nesizinda aluxhomeke kumasayinini wendabuko. Ihlanganisa konke okubonayo kumlando wokugcina umsebenzi wenethiwekhi. Isofthiwe iwusizo ngokukhethekile ekuhlaziyweni kwezimoto futhi inomlando wokusetshenziswa ezindaweni zesayensi, amanyuvesi amakhulu, izikhungo eziphezulu kanye nezinkundla zokucwaninga zokuvikela izinhlelo zabo. I-Bro Project iyingxenye ye-Software Freedom Conservancy.
Qalisa i-OSS
Prelude OSS yiyona version evulekile yomthombo we-Prelude Siem, uhlelo olusha lokubheka uhlelo lokubamba i-hybride olwenziwe ukuba lube yinkomfa, isatshalaliswe, idwala liqinile futhi liqinile. Ukuqalwa kwe-OSS kulungele izakhizinda ezilinganiselwe ze-IT, izinhlangano zocwaningo kanye nokuqeqesha. Akuhloswe ngobukhulu obukhulu noma amanethiwekhi amanengi. Ukuqala ukusebenza kwe-OSS kunqunyelwe kodwa kusebenza njengesingeniso kwenguqulo yezohwebo.
Isivikeli se-Malware
I-Malware Defender iyinhlangano ye-IP ehambisana ne-Windows ehambisanayo nokuvikelwa kwenethiwekhi kubasebenzisi abaphambili. Ilawula ukutholakala kwe-intrusion nokutholakala kwe-malware. Kuyafaneleka ukusetshenziselwa ekhaya, nakuba izinto zalo zokufundisa ziyinkimbinkimbi kubasebenzisi abajwayelekile ukuba baqonde. Ngaphambili uhlelo lwezohwebo, i-Malware Defender isistimu yokuvimbela i-intrusion (ama-HIPS) ahlola isisodwa esisodwa somsebenzi osolisayo.