BRO anomaly detection

Dear All
I am working in the area of Anomaly detection. I am interested in understanding the existing mechanism implemented in BRO.

Please refer me some useful material and/or research papers, especialy how it is different than SNORT.


any updates?

Hello Syed,

We maintain a list of research papers involving Bro. You can find them here: