Sciweavers

NDSS
2000
IEEE

A Lightweight Tool for Detecting Web Server Attacks

14 years 2 months ago
A Lightweight Tool for Detecting Web Server Attacks
We present an intrusion-detection tool aimed at protecting web servers, and justify why such a tool is needed. We describe several interesting features, such as the ability to run in real time and to keep track of suspicious hosts. The design is flexible and the signatures used to detect malicious behavior are not limited to simple pattern matching of dangerous cgi scripts. The tool includes mechanisms to reduce the number of false alarms. We conclude with a discussion of the information gained from deploying the tool at various sites.
Magnus Almgren, Hervé Debar, Marc Dacier
Added 01 Aug 2010
Updated 01 Aug 2010
Type Conference
Year 2000
Where NDSS
Authors Magnus Almgren, Hervé Debar, Marc Dacier
Comments (0)