SSFSNORT Training- Securing Cisco Networks with Open Source Snort Training

SSFSNORT Training- Securing Cisco Networks with Open Source Snort Training

Course Delivery

This Course is available in the following format:

Request this course in a different delivery format

GSA Schedule 70 Saving for Government Customers

Course Overview:

SSFSNORT Training- Securing Cisco Networks with Open Source Snort Training Course with Hands-on Labs

SSFSNORT Training- Securing Cisco Networks with Open Source Snort Training is an instructor-led course offered by ENO. It is a lab-intensive course that introduces students to the open source Snort technology as well as rule writing. With Securing Cisco Networks with Open Source Snort Training (SSFSNORT), you will also learn how to build and manage a Snort system using open source tools, plug-ins, and the Snort rule language to help manage, tune, and deliver feedback on suspicious network activity.

This Securing Cisco Networks with Open Source Snort Training (SSFSNORT) course combines lecture materials and hands-on labs throughout to make sure that you are able to construct a solid, secure Snort installation and write Snort rules using proper syntax and structure.

Customize It:

• If you are familiar with some aspects of this SSFSNORT Training- Securing Cisco Networks with Open Source Snort Training course, we can omit or shorten their discussion.
• We can adjust the emphasis placed on the various topics or build the SSFSNORT Training- Securing Cisco Networks with Open Source Snort Training course around the mix of technologies of interest to you (including technologies other than those included in this outline).
• If your background is nontechnical, we can exclude the more technical topics, include the topics that may be of special interest to you (e.g., as a manager or policy-maker), and present the SSFSNORT Training- Securing Cisco Networks with Open Source Snort Training course in manner understandable to lay audiences.

Related Courses:

SSFIPS Training- Securing Cisco Networks with Sourcefire Intrusion Prevention System Training v2.0
SSFAMP Training- Protecting Against Malware Threats with Cisco AMP for Endpoints Training v3.0

Audience / Target Group:

The target audience for this SSFSNORT Training- Securing Cisco Networks with Open Source Snort Training course:

• Security administrators
• Security consultants
• Network administrators
• System engineers
• Technical support personnel using open source IDS and IPS
• Channel partners and resellers

What You Will Learn:

Upon completing this SSFSNORT Training- Securing Cisco Networks with Open Source Snort Training course, learners will be able to meet these objectives:

• Understand what Snort is and its basic architectural components
• Understand Snort’s dynamic plug-in capapbilities
• Understand the different modes of Snort operation
• Perform installation and configuration of the Snort system
• Install and configure Snorby
• Configure and tune the Snort pre-processors
• Understand rule maintenance and techniques to keep rules current
• Create Snort rules using both simple and advanced rule-writing techniques
• Monitor performance of a Snort deployment

SSFSNORT Training- Securing Cisco Networks with Open Source Snort Training – Course Syllabus:

• Module 1: Intrusion Sensing technology, Challenges, and Sensor Deployment
• Module 2: Introduction to Snort Technology
• Module 3: Snort Installation
• Module 4: Cofiguring Snort for Database Output and Graphical Analaysis
• Module 5: Operating Snort
• Module 6: Snort Configuration
• Module 7: Configuring Snort Preprossors
• Module 8: Keeping Rules Up to Date
• Module 9: Budilidng a Distributed Snort Instalation
• Module 10: Basic Rule Syntax and Usage
• Module 11: Buildling a Snort IPS Installation
• Module 12: Rule Optimization
• Module 13: Using PCRE in Rules
• Module 14: Basic Snort Tuning
• Module 15: Using Byte_Jump/Test/Extract Rule Options
• Module 16: Protocol Modeling Concepts and Using Flowbits in Rule Writing
• Module 17: Case Studies in Rule Writing and Packet Analysis

Whether you are looking for general information or have a specific question, we want to help

Request More Information

Time Frame: 0-3 Months4-12 Months

Location

If multiple locations, please list in the additional comments field.

On-site
Virtual


Public Training Schedule
Private Group Training

Print Friendly, PDF & Email