snort

Install command:

brew install snort

Flexible Network Intrusion Detection System

https://www.snort.org

License: GPL-2.0-only

Formula JSON API: /api/formula/snort.json

Formula code: snort.rb on GitHub

Bottle (binary package) installation support provided for:


macOS on Apple Silicon	tahoe	✅
	sequoia	✅
	sonoma	✅
macOS on Intel	sonoma	✅

Linux	ARM64	✅
Linux	x86_64	✅

Current versions:

stable	✅	3.9.6.0
head	⚡️	HEAD

Depends on:

daq	3.0.21	Network intrusion prevention and detection system
hwloc	2.12.2	Portable abstraction of the hierarchical topology of modern architectures
jemalloc	5.3.0	Implementation of malloc emphasizing fragmentation avoidance
libdnet	1.18.0	Portable low-level networking library
libpcap	1.10.5	Portable library for network traffic capture
luajit	2.1.1760617492	Just-In-Time Compiler (JIT) for the Lua programming language
openssl@3	3.6.0	Cryptography and SSL/TLS Toolkit
pcre2	10.47	Perl compatible regular expressions library with a new API
vectorscan	5.4.12	High-performance regular expression matching library
xz	5.8.1	General-purpose data compression with high compression ratio

Depends on when building from source:

cmake	4.1.2	Cross-platform make
flex	2.6.4	Fast Lexical Analyzer, generates Scanners (tokenizers)
pkgconf	2.5.1	Package compiler and linker metadata toolkit

For snort to be functional, you need to update the permissions for /dev/bpf*
so that they can be read by non-root users. This can be done manually using:
sudo chmod o+r /dev/bpf*
or you could create a startup item to do this for you.

Analytics:

Installs (30 days)
`snort`	211
`snort --HEAD`	2
Installs on Request (30 days)
`snort`	211
`snort --HEAD`	2
Build Errors (30 days)
`snort`	0
Installs (90 days)
`snort`	645
`snort --HEAD`	2
Installs on Request (90 days)
`snort`	645
`snort --HEAD`	2
Installs (365 days)
`snort`	3,746
`snort --HEAD`	7
Installs on Request (365 days)
`snort`	3,746
`snort --HEAD`	7