There are a number of approaches which attackers are using, the following are considered 'easy' measures which can be taken to evade IDS: Fred Cohen mentioned in 1987 that it's unattainable to detect an intrusion in each scenario, and which the sources required to detect intrusions increase with the level of use.[39] Stack Exchange community