CIS4360

If you are citizen of an European Union member nation, you may not use this service unless you are at least 16 years old.
You already know Dokkio is an AI-powered assistant to organize & manage your digital files & messages. Very soon, Dokkio will support Outlook as well as One Drive. Check it out today!

Lecture - Installing and Testing SNORT IDS

Page history last edited by Patrick 5 years ago

Installing and Testing SNORT IDS

Summary

Setting up Snort in Linux, configuring local and external network variables, additional coverage of Snort configuration and rules, and using Nmap to generate Snort alerts.

Video

Right click and 'Save As...'

Snort Setup and Testing
Older video: Snort Installation

1:47 - Installing Snort
4:01 - Configuring home (local) network
8:01 - Stopping/starting Snort service
9:14 - Configuring external network
10:40 - Snort rules path
12:47 - Overview of alert file
14:17 - Using tail command to view file changes in real-time
14:45 - Installing Nmap
15:40 - Running Nmap (SYN scan, OS detection) against Snort host
16:58 - Alerts generated from scan
18:53 - Successful OS detection with Nmap

Reference Materials

How To Use Snort
Snort book (Syngress)
Snort 2.9.3 manual (PDF)
http://www.snort.org/docs - Snort Documentation
http://nmap.org/docs.html - Nmap Documentation

Additional Information

All Course Lectures

Comments (0)

You don't have permission to comment on this page.