Hands-On Snort Testing and Rule Creation for Infrastructure Security

Hands-On Snort Testing and Rule Creation for Infrastructure Security
Slide Note
Embed
Share

Dive into the world of Snort, a powerful intrusion detection system, through a practical course project in infrastructure security. This project, part of SEC290 Fundamentals of Infrastructure Security, focuses on testing Snort rules by capturing XMAS and TCP packets, as well as creating rules to detect ping and ICMP activity. Explore real-world scenarios and enhance your security skills through hands-on experience with Snort.

  • Snort
  • Infrastructure Security
  • Rule Creation
  • Hands-On
  • Intrusion Detection
petrovich_k
petrovich_k Follow

Uploaded on Sep 23, 2024 | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.

Download Presentation

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.

E N D

Presentation Transcript

  1. Course Project SEC290 Fundamentals of Infrastructure Security Module 2 Snort

  2. Rubric Activity Requirement(s) Points Testing Snort rules Take two screenshots 30 Creating Snort rules Take two screenshots 30

  3. Testing Snort rules Take a screenshot of the output in Part 1 Step 8. It should show the transcript of the XMAS scan alert.

  4. Testing Snort rules cont d Take a screenshot of the output in Part 1 Step 10. It should show the TCP packets generated by the XMAS scan.

  5. Creating Snort rules Take a screenshot of the output in Part 2 Step 5. It should show the ping activity alert.

  6. Creating Snort rules cont d Take a screenshot of the output in Part 2 Step 6. It should show the ICMP packets generated by the ping activity.

Related


Challenges and Progress in Chilean Infrastructure Development

Challenges and Progress in Chilean Infrastructure Development

aster
TSA Updates on Security Training Rule for OTRB Companies

TSA Updates on Security Training Rule for OTRB Companies

aziza
Infrastructure Development Bank of Zimbabwe (IDBZ) - Financing Zimbabwe's Infrastructure Needs

Infrastructure Development Bank of Zimbabwe (IDBZ) - Financing Zimbabwe's Infrastructure Needs

nathalia
Fleming's Left Hand Rule and Electric Motors

Fleming's Left Hand Rule and Electric Motors

galileo
Snort: An Open-Source Network Intrusion Detection System

Snort: An Open-Source Network Intrusion Detection System

farah
Uganda's Successes in Reaching Men with HIV Testing Through Assisted Partner Notification Program

Uganda's Successes in Reaching Men with HIV Testing Through Assisted Partner Notification Program

junius
Software Testing Foundation Level: Testing Throughout the SDLC Quiz

Software Testing Foundation Level: Testing Throughout the SDLC Quiz

avani
Importance of Software Testing in Preventing Catastrophic Failures

Importance of Software Testing in Preventing Catastrophic Failures

eyre
Testing Approach in SCREAM for E3SM Fall All-Hands 2019

Testing Approach in SCREAM for E3SM Fall All-Hands 2019

filip
Snort: A Comprehensive Overview

Snort: A Comprehensive Overview

emry520
Mastering Intrusion Detection with Snort: A Comprehensive Guide

Mastering Intrusion Detection with Snort: A Comprehensive Guide

spagnuolo_j
Enhancing Network Security with Software-Defined Snort and OpenFlow

Enhancing Network Security with Software-Defined Snort and OpenFlow

yazleenh
IDS and IPS for Network Security

IDS and IPS for Network Security

brec932
Enhancing Network Security Using Snort Virtual Network Function with DPI Service

Enhancing Network Security Using Snort Virtual Network Function with DPI Service

aheck
Comprehensive Guide to Traffic Analysis Using Snort and Tcpdump

Comprehensive Guide to Traffic Analysis Using Snort and Tcpdump

fyei
Intrusion Detection Systems (IDS) and Snort in Network Security

Intrusion Detection Systems (IDS) and Snort in Network Security

adrol
Testing in Software Engineering

Testing in Software Engineering

redu_sha
Gray Box Testing in Software Development

Gray Box Testing in Software Development

angele
Improving First Nation Infrastructure and Housing through Fiscal Management Act Model

Improving First Nation Infrastructure and Housing through Fiscal Management Act Model

mera_72
Guidelines for HIV Testing During Pregnancy and Postpartum

Guidelines for HIV Testing During Pregnancy and Postpartum

sha_sta
Comprehensive Overview of Fault Modeling and Fault Simulation in VLSI

Comprehensive Overview of Fault Modeling and Fault Simulation in VLSI

kaiy_2
Unit Testing in Software Engineering

Unit Testing in Software Engineering

laas

More Related Content