ids-20210608-online


Date: 8 June 2021
Location: Webinar
Venue: Online

Synopsis Suricata is an open source network intrusion detection engine. This introductory tutorial will give an overview of Suricata with some practical exercises for setting it up, packet analysis and writing basic signatures. Participants will get to do a few exercises during the session.

Target Audience

  • Engineers, Network Managers and Operators, and Security policy makers who are interested in network security who is interested to learn about network intrusion detection systems.

Pre-requisites

It is assumed that participants have a basic understanding of

  • Network operations, Internet technologies, OSI reference model and TCP/IP.
  • Basic Linux command line (CLI) skills.

We recommend the following Academy courses be completed before the start of the tutorial:

Workshop topics

  • Suricata Overview
  • Configuration and Setup
  • Packet Analysis
  • Writing basic signatures
  • Integration with other security tools

Other requirements

  • Laptop / Computer with SSH client installed.
  • Confirm Secure SHell (SSH) is allowed from the office or home network to access the lab infrastructure? Test ssh connectivity, try to connect to route-views.routeviews.org. For example from the CLI type: ssh rviews@route-views.routeviews.org

Workshop Items

  • Agenda (includes links to presentations and schedule)
  • Instructor: Adli Wahid (APNIC)
  • ids-20210608-online.txt
  • Last modified: 2021/06/17 14:32
  • (external edit)