This week, we learned about Network Intrusion Detection and Analysis.

NIDS(Network Intrusion Detection System) is a system that detects malicious traffic on a network. NIDS require promiscuous network access to analyze traffic such as unicast traffic. NIDS do not interfere with the traffic they monitor so they can be considered as passive devices.

NIPS(Network Intrusion Prevention System) is a network threat prevention technology that examines network traffic flows to detect and prevent exploits to the existing vulnerabilities. It works by actively scanning forwarded network traffic for malicious activities.

HIDS(Host Intrusion Detection System)