Intrusion Prevention (IPS) and Intrusion Detection System (IDS)

 Monitor and analyze all traffic in the network segment.

- It consists of a set of sensors that works to detect malicious activities on the network.

- Detect if someone is trying to enter your system or if a legitimate user is misusing it.

IPS complements an IDS by blocking intrusion and preventing further damage to the network. It is a tool that detects and blocks the attacker.

Intrusion Prevention
Hybrid Intrusion Detection Systems

- It is the use of network-based systems and Host-based systems to control and monitor the computational security of an environment.

Students: Felipe Moraes, Luma de Oliveira and Mariana Mondo

Host-based Intrusion Detection Systems (HIDS)

- Monitors and analyzes information collected from a single Host (Machine).

- Does not observe the traffic passing through the network.

- They are installed on servers to alert and identify attacks and attempts to improper access to the machine itself.

INTRUSION DETECTION SYSTEM - IDS

IPS is often located directly behind the firewall and provides a complementary layer of analysis that negatively selects dangerous content.

Intrusion Prevention Steps

Network-based Intrusion Detection Systems (NIDS)