Hi All, I am very new to security field and exploring various tools. i came across two great tools Wireshark and Snort... i found we can set filters in both tools. Can any one please explain the difference between both the tools... Thank you in advance.. asked 10 Dec '13, 22:08  Aditi |
One Answer:
Wireshark reads packets and decodes them in "human readable format" for you to inspect whatever it is that happens in those packets. Snort is a intrusion detection systems, which scans for malicious (or other) patterns in packets it sees, kind of like a Virus Scanner, and alerts if it sees something. answered 11 Dec '13, 01:02  Jasper ♦♦ |
