Securing Cisco Networks with Open Source Snort Global Knowledge Egypt

Overview:

Securing Cisco Networks with Open Source Snort is a lab-intensive course that introduces students to the open source Snort technology as well as rule writing. You will learn how to build and manage a Snort system using open source tools, plug-ins and the Snort rule language to help manage, tune, and deliver feedback on suspicious network activity.This course combines lecture materials and hands-on labs throughout to make sure that you are able to construct a solid, secure Snort installation and write Snort rules using proper syntax and structure.

Objectives:

After completing this course, you should be able to:

  • Understand what Snort is and its basic architectural components
  • Understand Snort’s dynamic plug-in capapbilities
  • Understand the different modes of Snort operation
  • Perform installation and configuration of the Snort system
  • Install and configure Snorby
  • Configure and tune the Snort pre-processors
  • Understand rule maintenance and techniques to keep rules current
  • Create Snort rules using both simple and advanced rule-writing techniques
  • Monitor performance of a Snort deployment

Content:

  • Module 1: Intrusion Sensing technology, Challenges, and Sensor Deployment
  • Module 2: Introduction to Snort Technology
  • Module 3: Snort Installation
  • Module 4: Cofiguring Snort for Database Output and Graphical Analaysis
  • Module 5: Operating Snort
  • Module 6: Snort Configuration
  • Module 7: Configuring Snort Preprossors
  • Module 8: Keeping Rules Up to Date
  • Module 9: Budilidng a Distributed Snort Instalation
  • Module 10: Basic Rule Syntax and Usage
  • Module 11: Buildling a Snort IPS Installation
  • Module 12: Rule Optimization
  • Module 13: Using PCRE in Rules
  • Module 14: Basic Snort Tuning
  • Module 15: Using Byte_Jump/Test/Extract Rule Options
  • Module 16: Protocol Modeling Concepts and Using Flowbits in Rule Writing
  • Module 17: Case Studies in Rule Writing and Packet Analysis
  • Labs

Global Knowledge is the worldwide leader in IT and business skills training. They deliver via training centers, private facilities, and the Internet, enabling their customers to choose when, where, and how they want to receive training programs and learning services.

See all Global Knowledge Egypt courses

Contact information not available.

Courses you can instantly connect with...
Cisco Certified Network Associate - CCNA American Academy Cisco Certified Network Associate (CCNA) Helper Learning Cisco Certified Network Professional (CCNP 2012) Helper Learning

Is this the right course for you?

Rate our content

Didn't find what you were looking for ?

or