Pros and Cons of using Barnyard in SNORT.
-
Hi,
I am new in computer networking. I would like to know what is the Pros and Cons of using Barnyard in SNORT?
Thanks in advance.
-
You can do a Google search to find out.
Pros:
- You can send Snort alerts to a 3rd party software to analyze them
Cons:
- You need to set it up?
-
Thanks Fragged for your reply.
I can't find it from google. That's why i am posting here. Are you able to find it through google too? If yes, please tell me what is the search term and i will read it myself.
-
Well unless you have a log aggregator that you prefer, all info provided from the pfSense or the packages itself is OK.
F.
-
Because my boss want to know what is the pros and cons of using barnyard in SNORT. I can't find any from google.
https://github.com/firnsy/barnyard2
Read the description part.
Basically you use barnyard2 to send alert and other data to a SQL database and then use something like Snorby (https://snorby.org/) to view that data.
This isn't really something that you can make a pros/cons list off. It's something you need or don't.