Introducing Snort

Join Jungwoo Ryoo for an in-depth discussion in this video Introducing Snort, part of Protecting Your Network with Open-Source Software.

Course Overview
Transcript
View Offline

- Snort is an open source IDS,…or Intrusion Detection System.…It is one of the most widely used, free IDS software.…Let's talk a little more about Snort.…First of all, Snort is an open source software.…However, some aspects of Snort are not free.…For example, some Snort rules…are only available to paid subscribers.…Snort can be run in different modes…including packet sniffer mode, IDS and IPS modes.…To download Snort, you just need to go to this website.…

Now, you see this Download menu?…Just click on the Download button…and you see Snort Stable Release right here.…They come in the form of the source files,…binaries, and in this case, all you need…is really a binary file.…In a packet sniffer mode, Snort is working passively,…meaning Snort simply collects packets in this case…without really analyzing them.…In an IDS mode, Snort still acts passively…but then it analyzes packets to detect…suspicious packets to alert users.…

In an IPS mode, Snort is more active in a sense that…it analyzes packets, detects suspicious packets…

Resume Transcript Auto-Scroll

Author

Jungwoo Ryoo

Skill Level Beginner

1h 49m

Duration

204,927

Views

Show More Show Less

Related Courses

Introduction
- Welcome
  43s
- What you should know before watching this course
  1m 3s
1. Understanding Firewalls
- What is a firewall?
  2m 26s
- A host firewall
  2m 42s
- A network firewall
  2m 41s
- Static packet filtering (SPF) vs. stateful packet inspection (SPI)
  2m 9s
2. Host as a Router
- Netfilter and iptables
  2m 26s
- Using iptables to set up a host firewall
  5m 46s
- Creating a shell script to automate configuring Netfilter
  4m 39s
- Understanding hosts as routers
  1m 57s
- Host as a router: Including an additional network adapter
  3m 55s
- Host as a router: Setting up a second host to test the router
  2m 48s
- Host as a router: Setting up IP forwarding
  2m 35s
- Host as a router: Configuring the router's Netfilter settings
  4m 4s
- Host as a router: Testing
  1m 36s
3. Host as a Firewall
- Understanding using a host as a network firewall
  2m 24s
- Setting up a web server to receive forwarded packets
  1m
- Configuring port forwarding by adding Netfilter rules
  3m 49s
- Testing port forwarding
  1m 13s
- Understanding one-legged demilitarized zones (DMZs) using iptables
  2m 7s
- Using iptables to set up a one-legged DMZ
  2m 3s
- Using iptables to set up a true DMZ
  1m 10s
- Understanding Squid, an application proxy firewall
  2m 14s
- Setting up Squid
  3m 33s
- Fine-tuning the Ubuntu router host
  4m 53s
4. Packet Analysis
- What is a packet analysis?
  1m 59s
- Packet-analysis applications in network security: ARP poisoning example
  3m 43s
- Packet capturing with Wireshark
  3m 16s
- Exploring Wireshark's advanced features
  1m 17s
- Demonstrating Wireshark's advanced features
  2m 50s
5. Intrusion Detection Systems (IDS) and Vulnerability Assessment
- What is an IDS?
  1m 57s
- Introducing Snort
  1m 28s
- Snort as a packet sniffer
  3m 8s
- Snort as an IDS: Establishing rules
  3m 16s
- Snort as an IDS: Detecting pings
  2m 25s
- What is network vulnerability assessment?
  2m 41s
- Nessus
  1m 6s
- Network scanning with Nessus
  1m 32s
6. Logging and Monitoring
- Logging and its significance
  1m 10s
- Syslog-ng
  51s
- Log forwarding using syslog-ng: Part one
  2m 30s
- Log forwarding using syslog-ng: Part two
  4m 10s
- Kiwi
  1m 31s
- Simple Network Management Protocol (SNMP)
  1m 43s
Conclusion
- Next steps
  37s

Show MoreShow Less

Take notes with your new membership!

Type in the entry box, then click Enter to save your note.

1:30Press on any video thumbnail to jump immediately to the timecode shown.

Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.

Start Your Free Trial Now

Skills covered in this course

Introducing Snort

Author

Released

Skill Level Beginner

Duration

Views

Related Courses

Mac OS X Server 10.6 Snow Leopard: DNS and Network Services

Norton Internet Security Essential Training

Windows 8: Networking and Security

Learning IT Security

Introduction

1. Understanding Firewalls

2. Host as a Router

3. Host as a Firewall

4. Packet Analysis

5. Intrusion Detection Systems (IDS) and Vulnerability Assessment

6. Logging and Monitoring

Conclusion

Take notes with your new membership!

Skills covered in this course

Continue Assessment

Start Your Free Trial Now