Network Security Monitoring with Suricata

سرفصل های دوره

Sophisticated adversaries have routinely demonstrated the ability to compromise enterprise networks and remain hidden for extended periods of time. This course will teach you how to dig deep into network traffic utilizing Suricata.

Exercise Files

network-security-monitoring-suricata.zip

Module 1 - Course Introduction

1. Welcome to Network Security Monitoring with Suricata

2. OISF and Suricata

3. Intrusion Detection and Prevention - The Basics

4. Lab - The Training VM

5. Demo - Getting Started with the Training VM

Module 2 - Suricata Basics

1. Introduction to Network Security Monitoring (NSM)

2. Demo - Introduction to the Training VM

3. Suricata Common Operations

4. Demo - Working with Suricata

5. Updating Rules

6. Demo - Working with Suricata - Update

Module 3 - Suricata Core Functions

1. Alert Generation

2. Demo - Generating Alerts and Querying EVE.JSON

3. Basic Rule Comprehension

4. Demo - Working with Rules

5. Tuning Out the Noise

6. Demo - Working with Suricata's Configuration File

7. Suricata's Investigative Data Outputs

8. Demo - Extended Logging

Module 4 - Enterprise Suricata Deployments

1. Deployment Modes

2. Network Placement and Capture Methods

3. Modifying Rules with Suricata-Update

4. Demo - Working with modify.conf

5. Integrating Suricata into Your Security Stack

6. Demo - Shipping Suricata Logs with Filebeat

7. Working with Files on the Wire

8. Demo - Extracting Portable Executable (PE) Files

Module 5 - Course Wrap-Up

1. Next Steps

139,000 تومان

خرید اشتراک افزودن به سبد خرید

خرید دانلودی فوری

در این روش نیاز به افزودن محصول به سبد خرید و تکمیل اطلاعات نیست و شما پس از وارد کردن ایمیل خود و طی کردن مراحل پرداخت لینک های دریافت محصولات را در ایمیل خود دریافت خواهید کرد.

تولید کننده: PluralSight