Software Alternatives & Reviews
Register | Login

snort VS SecurityOnion

Compare snort VS SecurityOnion and see what are their differences

NinjaOne
NinjaOne (Formerly NinjaRMM) provides remote monitoring and management software that combines powerful functionality with a fast, modern UI. Easily remediate IT issues, automate common tasks, and support end-users with powerful IT management tools. featured
Contents:
  1. » Base Details
  2. » Videos
  3. » Reviews
  4. » Alternatives

snort logo snort

Snort is a free and open source network intrusion prevention system.

SecurityOnion logo SecurityOnion

Security Onion is a free and open source Linux distribution for intrusion detection, enterprise security monitoring, and log management.
  • snort Landing page
    Landing page //
    2022-06-20
  • SecurityOnion Landing page
    Landing page //
    2021-10-18

snort videos

+ Add

Network Intrusion Detection Systems (SNORT)

More videos:

  • Review - Intrusion Detection System for Windows (SNORT)
  • Review - Massive Beer Review 2692 Bolero Snort Brewing Crushable Hazie IPA

SecurityOnion videos

No SecurityOnion videos yet. You could help us improve this page by suggesting one.

+ Add video

Category Popularity

0-100% (relative to snort and SecurityOnion)

snort

SecurityOnion

Security & Privacy
66 66%
Security & Privacy
34% 34
Monitoring Tools
55 55%
Monitoring Tools
45% 45
Cyber Security
74 74%
Cyber Security
26% 26
Tool
100 100%
Tool
0% 0

User comments

Share your experience with using snort and SecurityOnion. For example, how are they different and which one is better?
Log in or Post with

Reviews

These are some of the external sources and on-site user reviews we've used to compare snort and SecurityOnion

snort Reviews

8 Best Open Source SIEM Tools
Snort is an open-source intrusion detection and prevention system that you can use for real-time network traffic analysis and packet logging on IP networks. You can also use Snort to detect attacks or possible probes. You can configure Snort to work in three main modes:
Source: www.logiq.ai
The Top 14 Free and Open Source SIEM Tools For 2022
It is also equipped with log analysis capabilities and the ability to display traffic or dump streams of packets to log files. Users have access to a user manual, FAQ file and guides on how to locate and use Oinkcode. Snort has three great uses:
Source: logit.io

SecurityOnion Reviews

We have no reviews of SecurityOnion yet.
Be the first one to post

Social recommendations and mentions

Based on our record, SecurityOnion should be more popular than snort. It has been mentiond 23 times since March 2021. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.

snort mentions (6)

  • Who does check linux distros of malware - open source
    Linux has (free) tools to improve security and detect/remove malware: Lynis,Chkrootkit,Rkhunter,ClamAV,Vuls,LMD,radare2,Yara,ntopng,maltrail,Snort,Suricata... Source: 5 months ago
  • NETGATE 4100 - Snort Fatal Error on new install
    Okay I figured it out. The problem occurs when you're only using the community rules for Snort. If you go to snort.org and register for a free or subscriber "oink" code, enter the code in pfSense and update the rules then it magically works as expected. My best guess is that unicode information get's added when the new rules are updated. At any rate, this worked for me. Source: about 1 year ago
  • Trying to learn Rogue Device Detection
    Snort (not an insult) https://snort.org/. Source: almost 2 years ago
  • Snort Subscriber Ruleset - Not Downloaded - error code 422 - md5 download failed
    422 supposedly means the requested file doesn't exist, and sure enough if you look on the snort.org rules downloads page there is no file for version 29180. Source: over 2 years ago
  • Unable to Install OpenAppID on Ubuntu Server 18.04
    Where did you get the sourcecode you are building from? The snort3_extra-3.1.0.0.tar.gz package from the snort.org website doesn't have this stuff in appid_listener_event_handler.cc. Source: about 3 years ago
View more

SecurityOnion mentions (23)

  • Self Hosted Traffic Monitoring
    You’re looking for Security Onion, https://securityonionsolutions.com/. It’s a bunch of integrated tools that will sniff traffic and show alerts. Self hosted, open source, and free. Source: 5 months ago
  • Did I get a cyber role too early?
    Grab Security Onion for some blue team tools, try to get Zeek, Wazuh, and Suricata working and look at the output. Source: 10 months ago
  • Do you have any recommendations for a way to log every website that comes across my network with the mac address that requested it?
    If you want a GUI tool try Security Onion. (https://securityonionsolutions.com/). It is essentially zeek & more wrapped up in an easy to use GUI. Source: 11 months ago
  • Home Virtual SIEM Lab Suggestions?
    Used security onion many years ago. https://securityonionsolutions.com/. Source: over 1 year ago
  • Server Hardening
    Active Measures - Includes (IDS/IPS) such as open-source Suricata or Snort on pfSense, and File Integrity Monitoring (FIM), such as the commercial Tripwire and dated, open-source Tripwire, or the open-source Wazuh installed on servers. These can be combined into a Security Information and Event Management (SIEM) system like the open-source solution, Security Onion. Wazuh itself has evolved into a SIEM. Source: over 1 year ago
View more

What are some alternatives?

When comparing snort and SecurityOnion, you can also consider the following products

Suricata - Suricata is a high performance Network IDS, IPS and Network Security Monitoring engine.

Imunify360 - Imunify360 is a comprehensive security suite for Linux web servers. It includes antivirus, firewall, WAF, PHP Security Layers, Patch Management, Domain reputation with easy UI and advanced automation.

Wazuh - Open Source Host and Endpoint Security

McAfee Network Security Platform - McAfee Network Security Platform guards all your network-connected devices from zero-day and other attacks, with a cost-effective network intrusion prevention system.

AlienVault OSSIM - Alienvault integrates and correlates many popular network and security monitoring tools in one...

Next-Generation Intrusion Prevention System (NGIPS) - Cisco Firepower NGIPS (Next-Generation IPS) provides contextual awareness, security intelligence, and advanced threat protection against attacks and malware.

Loading...