Course details
Overview:
Securing Cisco Networks with Open Source Snort is a lab-intensive course that introduces students to the open source Snort technology as well as rule writing. You will learn how to build and manage a Snort system using open source tools, plug-ins and the Snort rule language to help manage, tune, and deliver feedback on suspicious network activity.This course combines lecture materials and hands-on labs throughout to make sure that you are able to construct a solid, secure Snort installation and write Snort rules using proper syntax and structure.
Objectives:
After completing this course, you should be able to:
- Understand what Snort is and its basic architectural components
- Understand Snort’s dynamic plug-in capapbilities
- Understand the different modes of Snort operation
- Perform installation and configuration of the Snort system
- Install and configure Snorby
- Configure and tune the Snort pre-processors
- Understand rule maintenance and techniques to keep rules current
- Create Snort rules using both simple and advanced rule-writing techniques
- Monitor performance of a Snort deployment
Content:
- Module 1: Intrusion Sensing technology, Challenges, and Sensor Deployment
- Module 2: Introduction to Snort Technology
- Module 3: Snort Installation
- Module 4: Cofiguring Snort for Database Output and Graphical Analaysis
- Module 5: Operating Snort
- Module 6: Snort Configuration
- Module 7: Configuring Snort Preprossors
- Module 8: Keeping Rules Up to Date
- Module 9: Budilidng a Distributed Snort Instalation
- Module 10: Basic Rule Syntax and Usage
- Module 11: Buildling a Snort IPS Installation
- Module 12: Rule Optimization
- Module 13: Using PCRE in Rules
- Module 14: Basic Snort Tuning
- Module 15: Using Byte_Jump/Test/Extract Rule Options
- Module 16: Protocol Modeling Concepts and Using Flowbits in Rule Writing
- Module 17: Case Studies in Rule Writing and Packet Analysis
- Labs
Course Location
About Global Knowledge Egypt
Global Knowledge is the worldwide leader in IT and business skills training. They deliver via training centers, private facilities, and the Internet, enabling their customers to choose when, where, and how they want to receive training programs and learning services.
See all Global Knowledge Egypt courses- JavaScript Full stack web developer virtual internship Virtual Bootcamp + Internship at LaimoonAED 1,449Duration: Upto 30 Hours
- Cisco CCNA IPv4 Lead AcademyEGP 1,269
EGP 18,854Duration: Upto 4 Hours - Cisco CCNA (200-301) Volume 2 Lead AcademyEGP 1,269
EGP 18,854Duration: Upto 9 Hours