There is a great post over on Security Focus detailing the methods available to hackers to bypass your IDS systems and exploit your network. While many of the basic attacks this paper covers are already addressed with Snort rules (and other IDS systems), the methods can be made more elaborate to trick your IDS rules. As a security professional, its important to understand how session splicing, fragmentation, and shellcode attacks take place and this paper underlines how each work (and a few more).
Must be logged in to post comments