Kids 0.1b released
It is my great pleasure to announce the availability of KIDS 0.1b, an Kernel (Network) Intrusion Detection System. This project is the result of a year of research on kernel and Network IDS. The Kernel Intrusion Detection System-KIDS, is a Network IDS, where the main part, packets grab/string match, is running at kernelspace, with a hook of Netfilter Framework. This project is not ready for use. It is only a proof of concept and should not be put in an environment in production, yet.
The main goal of KIDS is to try to reduce the delay in the processing of the rules, with the elimination of two changes in context (kernel-user-user-kernel), as this task is performed in kernelspace.
The main goal of KIDS is to try to reduce the delay in the processing of the rules, with the elimination of two changes in context (kernel-user-user-kernel), as this task is performed in kernelspace.
Very thanks to Amador Pahim, my boss and Teacher Advisor.
A more detailed document for development / hacking will be drafted later.
For more information about KIDS project, please see:
One Comment, Comment or Ping
Welton Rodrigo Torres Nascimento
Olá.
Gostaria de saber sobre o sisponto.
Você ainda o mantém?
Feb 29th, 2008
Reply to “Kids 0.1b released”