EncartaLabs

Securing Cisco Networks with Snort Rule Writing Best Practices (SSFRULES)

( Duration: 3 Days )

This Securing Cisco Networks with Snort Rule Writing Best Practices (SSFRULES) training course shows you how to write rules for Snort, an open-source intrusion detection and prevention system. Through a combination of expert-instruction and hands-on practice, this course provides you with the knowledge and skills to develop and test custom rules, standard and advanced rules-writing techniques, how to integrate OpenAppID into rules, rules filtering, rules tuning, and more. The hands-on labs give you practice in creating and testing Snort rules.

By attending Securing Cisco Networks with Snort Rule Writing Best Practices (SSFRULES) workshop, delegates will learn to:

  • Describe the Snort rule development process
  • Describe the Snort basic rule syntax and usage
  • Describe how traffic is processed by Snort
  • Describe several advanced rule options used by Snort
  • Describe OpenAppID features and functionality
  • Describe how to monitor the performance of Snort and how to tune rules

  • Basic understanding of networking and network protocols
  • Basic knowledge of Linux command-line utilities
  • Basic knowledge of text editing utilities commonly found in Linux
  • Basic knowledge of network security concepts
  • Basic knowledge of a Snort-based IDS/IPS system

The Securing Cisco Networks with Snort Rule Writing Best Practices (SSFRULES) class is ideal for:

  • Security administrators
  • Security consultants
  • Network administrators
  • System engineers
  • Technical support personnel using open source IDS and IPS

COURSE AGENDA

1

Introduction to Snort Rule Development

2

Snort Rule Syntax and Usage

3

Traffic Flow Through Snort Rules

4

Advanced Rule Options

5

OpenAppID Detection

6

Tuning Snort

Encarta Labs Advantage

  • One Stop Corporate Training Solution Providers for over 4,000 Modules on a variety of subjects
  • All courses are delivered by Industry Veterans
  • Get jumpstarted from newbie to production ready in a matter of few days
  • Trained more than 50,000 Corporate executives across the Globe
  • All our trainings are conducted in workshop mode with more focus on hands-on sessions

View our other course offerings by visiting http://encartalabs.com/course-catalogue-all.php

Contact us for delivering this course as a public/open-house workshop/online training for a group of 10+ candidates.

Top