Hands-On Snort Testing and Rule Creation for Infrastructure Security

Slide Note
Embed
Share

Dive into the world of Snort, a powerful intrusion detection system, through a practical course project in infrastructure security. This project, part of SEC290 Fundamentals of Infrastructure Security, focuses on testing Snort rules by capturing XMAS and TCP packets, as well as creating rules to detect ping and ICMP activity. Explore real-world scenarios and enhance your security skills through hands-on experience with Snort.

petrovich_k
petrovich_k Follow

Uploaded on Sep 23, 2024 | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. Download presentation by click this link. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

E N D

Presentation Transcript

  1. Course Project SEC290 Fundamentals of Infrastructure Security Module 2 Snort

  2. Rubric Activity Requirement(s) Points Testing Snort rules Take two screenshots 30 Creating Snort rules Take two screenshots 30

  3. Testing Snort rules Take a screenshot of the output in Part 1 Step 8. It should show the transcript of the XMAS scan alert.

  4. Testing Snort rules cont d Take a screenshot of the output in Part 1 Step 10. It should show the TCP packets generated by the XMAS scan.

  5. Creating Snort rules Take a screenshot of the output in Part 2 Step 5. It should show the ping activity alert.

  6. Creating Snort rules cont d Take a screenshot of the output in Part 2 Step 6. It should show the ICMP packets generated by the ping activity.

Related


Understanding Snort: A Comprehensive Overview

Understanding Snort: A Comprehensive Overview

emry520
Mastering Intrusion Detection with Snort: A Comprehensive Guide

Mastering Intrusion Detection with Snort: A Comprehensive Guide

spagnuolo_j
Understanding Snort: An Open-Source Network Intrusion Detection System

Understanding Snort: An Open-Source Network Intrusion Detection System

farah
Enhancing Network Security with Software-Defined Snort and OpenFlow

Enhancing Network Security with Software-Defined Snort and OpenFlow

yazleenh
Understanding Intrusion Detection Systems (IDS) and Snort in Network Security

Understanding Intrusion Detection Systems (IDS) and Snort in Network Security

adrol
Testing Approach in SCREAM for E3SM Fall All-Hands 2019

Testing Approach in SCREAM for E3SM Fall All-Hands 2019

filip
Comprehensive Guide to Traffic Analysis Using Snort and Tcpdump

Comprehensive Guide to Traffic Analysis Using Snort and Tcpdump

fyei
TSA Updates on Security Training Rule for OTRB Companies

TSA Updates on Security Training Rule for OTRB Companies

aziza
Challenges and Progress in Chilean Infrastructure Development

Challenges and Progress in Chilean Infrastructure Development

aster
Uganda's Successes in Reaching Men with HIV Testing Through Assisted Partner Notification Program

Uganda's Successes in Reaching Men with HIV Testing Through Assisted Partner Notification Program

junius
Software Testing Foundation Level: Testing Throughout the SDLC Quiz

Software Testing Foundation Level: Testing Throughout the SDLC Quiz

avani
Infrastructure Development Bank of Zimbabwe (IDBZ) - Financing Zimbabwe's Infrastructure Needs

Infrastructure Development Bank of Zimbabwe (IDBZ) - Financing Zimbabwe's Infrastructure Needs

nathalia
Importance of Software Testing in Preventing Catastrophic Failures

Importance of Software Testing in Preventing Catastrophic Failures

eyre
Understanding IDS and IPS for Network Security

Understanding IDS and IPS for Network Security

brec932
Introduction to Terraform for Infrastructure Automation

Introduction to Terraform for Infrastructure Automation

cori_988
Infrastructure Prioritization Framework and Challenges

Infrastructure Prioritization Framework and Challenges

kafka
Fundamentals of Software Testing Explained

Fundamentals of Software Testing Explained

nico
Enhancing Network Security Using Snort Virtual Network Function with DPI Service

Enhancing Network Security Using Snort Virtual Network Function with DPI Service

aheck
Understanding Software Testing Metrics and Tools

Understanding Software Testing Metrics and Tools

scarlett
Understanding Fleming's Left Hand Rule and Electric Motors

Understanding Fleming's Left Hand Rule and Electric Motors

galileo
Understanding Equivalence Class Testing and Its Application in Software Testing

Understanding Equivalence Class Testing and Its Application in Software Testing

apple
Pascal's Rule in NMR Spectroscopy ( n+1 )

Pascal's Rule in NMR Spectroscopy ( n+1 )

nicolo
EPA Rule 40 CFR Part 63 Subpart HHHHHH Overview

EPA Rule 40 CFR Part 63 Subpart HHHHHH Overview

reey636
Enhancing California's Election Cybersecurity Readiness

Enhancing California's Election Cybersecurity Readiness

mallory

More Related Content

Understanding Telecom Security Testing: Vulnerability Assessment & Remediation
Understanding Telecom Security Testing: Vulnerability Assessment & Remediation
Importance of Infrastructure Investment for Food Security and Resilience
Importance of Infrastructure Investment for Food Security and Resilience
Understanding the Role of Security Champions in Organizations
Understanding the Role of Security Champions in Organizations
Automated Security Testing Using ZAP API
Automated Security Testing Using ZAP API
Understanding the Roles of a Security Partner
Understanding the Roles of a Security Partner
Software Testing Fundamentals - Objectives, Principles, and Testability
Software Testing Fundamentals - Objectives, Principles, and Testability
NSCAS Test Administration Orientation 2022-2023 Overview
NSCAS Test Administration Orientation 2022-2023 Overview
Implementation of LFD Testing in Workplace Settings
Implementation of LFD Testing in Workplace Settings
Difference Between Manual Testing and Model Checking
Difference Between Manual Testing and Model Checking
Evolution of Antimicrobial Susceptibility Testing in Veterinary Medicine
Evolution of Antimicrobial Susceptibility Testing in Veterinary Medicine
Enhancing Mobile App Testing Strategies for Quality Assurance
Enhancing Mobile App Testing Strategies for Quality Assurance
Software Quality Assurance: Understanding Unit Testing and Boundary Value Testing
Software Quality Assurance: Understanding Unit Testing and Boundary Value Testing
Fundamentals of Software Testing: Quiz on Testing Principles
Fundamentals of Software Testing: Quiz on Testing Principles
Antigen Testing in Higher Education Institutions
Antigen Testing in Higher Education Institutions
Legal Framework on Information Security in the Ministry of Trade, Tourism, and Telecommunication
Legal Framework on Information Security in the Ministry of Trade, Tourism, and Telecommunication
Zimbabwe HIV Viral Load Testing Overview
Zimbabwe HIV Viral Load Testing Overview
Understanding Infrastructure Financing Options and Principles
Understanding Infrastructure Financing Options and Principles
Introducing the New Governor's AFID Infrastructure Grant Program
Introducing the New Governor's AFID Infrastructure Grant Program
Challenges and Importance of Infrastructure in Indian Economy
Challenges and Importance of Infrastructure in Indian Economy
City Power Electricity Network Infrastructure Overview
City Power Electricity Network Infrastructure Overview
AEP Enterprise Security Program Overview - June 2021 Update
AEP Enterprise Security Program Overview - June 2021 Update
Addressing Infrastructure Investment Disparity: Challenges and Solutions
Addressing Infrastructure Investment Disparity: Challenges and Solutions
Infrastructure Programme Implementation Plan (IPIP) - Module 7 Overview
Infrastructure Programme Implementation Plan (IPIP) - Module 7 Overview
Understanding CIL vs. Section 106 for Infrastructure Funding
Understanding CIL vs. Section 106 for Infrastructure Funding