Duration — 5 Days

 

The course teaches how to use Snort, from the very basic to the advanced rule configuration and optimization. The course starts with an overview of TCP/IP communication model, the basics of network security and goes into the depth of understanding the protocol headers. It then provides an understanding of IDS technology and terminology, and progresses through advanced topics such as IDS architecture and deployment, protocol capture and analysis, active intrusion prevention, and stealth network monitoring. The course covers all aspects of using Snort, including basic installation, inner workings, writing rules, implementing output plug-ins, preprocessor configuration and active responses