What you'll learn
- Write Snort Rules
- Analyze PCAPS using Wireshark and Tcpdump
- Create Virtual Machines using VirtualBox
- Configure Security Onion
- Test Snort rules using automated scripts
- Analyze Snort NIDS alerts using Squert
- Configure Kali Linux
- Test exploits and analyze resulting network traffic
Description
Hello everybody. My name is Jesse Kurrus, and I’ll be your professor for the duration of the Snort Intrusion Detection, Rule Writing, and PCAP Analysis course. This course will consist of written material to go over on your own pace, and labs to reinforce the concepts from the provided resources. To follow along with these labs, you'll need a VirtualBox, Security Onion, Kali Linux, and Windows 7 VMs. These are all free and open source, including the Windows 7 VM which is available free for development purposes.
This course is 100% hands-on, save for the initial introduction. Please be prepared to follow along with these labs.
The following are the hands-on labs. Please refer to the course for full descriptions:
- Lab 1: Setting up Security Onion with VirtualBox
- Lab 2: Boleto Malware Snort Rule Writing and PCAP Analysis
- Lab 3: Vetting Snort Rule Quality with Dumbpig
- Lab 4: Utilizing Offset and Depth in a Snort Rule
- Lab 5: Kali Linux Setup with VirtualBox
- Lab 6: Snort Rule Writing (SSH and FTP)
- Lab 7: Windows 7 Eternalblue Vulnerable VM VirtualBox Setup
- Lab 8: Windows 7 Eternalblue Exploitation and Snort/PCAP Analysis
- Lab 9: Eternalblue PCAP Analysis and Snort Rule Writing
- Lab 10: Ubuntu Server 12.04 Vulnerable VM VirtualBox Setup
- Lab 11: Ubuntu Server 12.04 Heartbleed Exploitation and Snort/PCAP Analysis
- Lab 12: Heartbleed PCAP Analysis and Snort Rule Writing
Students also bought
Cognitive Behavioural Therapy (CBT) Practitioner Certificate
Therapeutic Art Life Coach Certification (Accredited)
Herbalism :: Introduction & Medicine Making Certificate
Introduction to CBT: Cognitive Behavioral Therapy
Internationally Accredited Diploma Certificate in Nutrition
CBT for Depression, Anxiety, Phobias and Panic Attacks
Aromatherapy- Using Essential Oils For Natural Living (5 CE)
Nutrition Masterclass: Build Your Perfect Diet & Meal Plan
Información sobre el Instructor
- 4.49 Calificación
- 40846 Estudiantes
- 7 Cursos
Jesse Kurrus, M.S., OSCP, CEH, Security+, Linux+, Network+, CISSP
Senior Penetration Tester and Technical Trainer
Summary: Jesse Kurrus is a cybersecurity expert with a breadth and depth of knowledge, professional experience, and top of the line credentials directly related to his field of expertise. He has provided quality training for thousands of students online, has mentored them one-on-one, and has coached many to acquire jobs in the cyber field. Professional strengths include security analysis, intrusion detection, ethical hacking, penetration testing, training, and technical writing. Jesse has a true passion for cybersecurity and information technology, and an insatiable ambition to further his knowledge and professional skill set.
Specialties: Intrusion Detection / Network Security Monitoring (Security Onion, Snort, Bro, and Suricata); SIEM Technology (Elasticsearch, Logstash, Kibana (ELK), ArcSight, and Splunk); PCAP analysis (Tcpdump, Wireshark, NetworkMiner, NetWitness/Security Analytics); Penetration Testing (Kali Linux, BurpSuite, Nikto, Nmap, Metasploit, etc.)
Current Degrees/Certifications: M.S. in Information Technology with Information Assurance Specialization / B.S. in Computer Networks and Security / Network+, A+, Security+, Linux+, Certified Ethical Hacker v8 (CEH), Offensive Security Certified Professional (OSCP), Certified Information Systems Security Professional (CISSP), eLearnSecurity Web application Penetration Tester (eWPT)
Student feedback
Course Rating
Reviews
Thanks learned some new techniques and some really great tips.