AWS is a totally different beast and you'll have other useful tools in the stack... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		PenguinCoder on May 27, 2022 \| parent \| context \| favorite \| on: Snort – Network Intrusion Detection and Prevention... AWS is a totally different beast and you'll have other useful tools in the stack there. Cloud trail, guard duty, VPCs, proper least privilege and IAM rules, etc. What are you looking for in a snort alternative? It is the open source standard; though you might also look at suricata. Perhaps a whole security stack like security onion which incorporates snort and a lot of other tools. Might be overkill for what you want though.

nonane on May 28, 2022 [–]

> Cloud trail, guard duty, VPCs, proper least privilege and IAM rules

We use all these. I guess this could be considered IDS + IPS?

PenguinCoder on May 28, 2022 | | [–]

I wouldn't put that level of logging as the same as an IDS/IPS, just alternatives.

spydum on May 28, 2022 | | [–]

Not IPS, those tools don't block access.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact