An Intrusion Detection System (IDS) is a type of security system used to detect malicious activity or policy violations on a computer network. It does this by monitoring network traffic and analyzing it for suspicious activity. For example, an IDS may detect an attempted connection to a restricted port or an attempted download of a malicious file. It then alerts the system administrator so they can take appropriate action to address the issue.
1. Network Intrusion Detection Systems (NIDS): These systems monitor the network traffic for malicious activity. Examples include Snort, Suricata, and Bro.
2. Host Intrusion Detection Systems (HIDS): These systems monitor the activity on a single host or device. Examples include OSSEC, Samhain, and Tripwire.
3. Wireless Intrusion Detection Systems (WIDS): These systems monitor wireless networks for malicious activity. Examples include AirDefense and AirTight.
4. Application Intrusion Detection Systems (AIDS): These systems monitor applications for malicious activity. Examples include ModSecurity and AppDetective.
5. Database Intrusion Detection Systems (DIDS): These systems monitor databases for malicious activity. Examples include Oracle Advanced Security and Imperva SecureSphere.
Vaibhav Kothia