- Snort is an open source IDS,…or Intrusion Detection System.…It is one of the most widely used, free IDS software.…Let's talk a little more about Snort.…First of all, Snort is an open source software.…However, some aspects of Snort are not free.…For example, some Snort rules…are only available to paid subscribers.…Snort can be run in different modes…including packet sniffer mode, IDS and IPS modes.…To download Snort, you just need to go to this website.…
Now, you see this Download menu?…Just click on the Download button…and you see Snort Stable Release right here.…They come in the form of the source files,…binaries, and in this case, all you need…is really a binary file.…In a packet sniffer mode, Snort is working passively,…meaning Snort simply collects packets in this case…without really analyzing them.…In an IDS mode, Snort still acts passively…but then it analyzes packets to detect…suspicious packets to alert users.…
In an IPS mode, Snort is more active in a sense that…it analyzes packets, detects suspicious packets…
Author
Jungwoo Ryoo
Released
1/30/2015- Name the classes of firewalls.
- Explain what Netfilter is and how it’s used.
- Describe what a home router does.
- Summarize the different types of DMZs.
- Cite the hierarchy for packets, frames, and application protocol data.
- Explain how to use a newly created rule file with Snort.
- Describe how to forward logs from Snort to syslog-ng.
- Define Kiwi.
Skill Level Beginner
Duration
Views
-
Introduction
-
Welcome39s
-
-
1. Understanding Firewalls
-
What is a firewall?2m 26s
-
A host firewall2m 42s
-
A network firewall2m 41s
-
-
2. Host as a Router
-
Netfilter and iptables2m 26s
-
Host as a router: Testing1m 36s
-
-
3. Host as a Firewall
-
Testing port forwarding1m 13s
-
Setting up Squid3m 33s
-
4. Packet Analysis
-
What is a packet analysis?1m 59s
-
-
5. Intrusion Detection Systems (IDS) and Vulnerability Assessment
-
What is an IDS?1m 57s
-
Introducing Snort1m 28s
-
Nessus1m 6s
-
Network scanning with Nessus1m 32s
-
-
6. Logging and Monitoring
-
Logging and its significance1m 10s
-
Syslog-ng51s
-
Kiwi1m 31s
-
-
Conclusion
-
Next steps37s
-
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.
Share this video
Embed this video
Video: Introducing Snort