Clustering of Snort alerts to identify patterns and reduce analyst workload.