This is our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Hi All,

I am very new to security field and exploring various tools. i came across two great tools Wireshark and Snort... i found we can set filters in both tools. Can any one please explain the difference between both the tools...

Thank you in advance..

asked 10 Dec '13, 22:08

Aditi's gravatar image

Aditi
16446
accept rate: 0%


Wireshark reads packets and decodes them in "human readable format" for you to inspect whatever it is that happens in those packets.

Snort is a intrusion detection systems, which scans for malicious (or other) patterns in packets it sees, kind of like a Virus Scanner, and alerts if it sees something.

permanent link

answered 11 Dec '13, 01:02

Jasper's gravatar image

Jasper ♦♦
23.8k551284
accept rate: 18%

Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or _italic_
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Question tags:

×1,620
×4

question asked: 10 Dec '13, 22:08

question was seen: 15,140 times

last updated: 11 Dec '13, 01:02

p​o​w​e​r​e​d by O​S​Q​A