Network Security Monitoring with Suricata

Focused View

Open Information Security Foundation (OISF)

2:27:20

152 View

Exercise Files

network-security-monitoring-suricata.zip

Module 1 - Course Introduction

1. Welcome to Network Security Monitoring with Suricata.mp4

04:56

2. OISF and Suricata.mp4

02:48

3. Intrusion Detection and Prevention - The Basics.mp4

07:14

4. Lab - The Training VM.mp4

00:10

5. Demo - Getting Started with the Training VM.mp4

03:31

Module 2 - Suricata Basics

1. Introduction to Network Security Monitoring (NSM).mp4

06:21

2. Demo - Introduction to the Training VM.mp4

06:33

3. Suricata Common Operations.mp4

04:08

4. Demo - Working with Suricata.mp4

07:19

5. Updating Rules.mp4

04:45

6. Demo - Working with Suricata - Update.mp4

04:06

Module 3 - Suricata Core Functions

1. Alert Generation.mp4

05:41

2. Demo - Generating Alerts and Querying EVE.JSON.mp4

05:45

3. Basic Rule Comprehension.mp4

06:13

4. Demo - Working with Rules.mp4

07:48

5. Tuning Out the Noise.mp4

07:48

6. Demo - Working with Suricata's Configuration File.mp4

09:00

7. Suricata's Investigative Data Outputs.mp4

04:30

8. Demo - Extended Logging.mp4

02:15

Module 4 - Enterprise Suricata Deployments

1. Deployment Modes.mp4

11:46

2. Network Placement and Capture Methods.mp4

08:11

3. Modifying Rules with Suricata-Update.mp4

04:04

4. Demo - Working with modify.conf.mp4

01:51

5. Integrating Suricata into Your Security Stack.mp4

01:42

6. Demo - Shipping Suricata Logs with Filebeat.mp4

07:23

7. Working with Files on the Wire.mp4

04:23

8. Demo - Extracting Portable Executable (PE) Files.mp4

05:27

Module 5 - Course Wrap-Up

1. Next Steps.mp4

01:42

Description

Sophisticated adversaries have routinely demonstrated the ability to compromise enterprise networks and remain hidden for extended periods of time. This course will teach you how to dig deep into network traffic utilizing Suricata.

What You'll Learn?

Closing the gap between when an infection occurs and when it is detected is a key goal of any security program. In this course, Network Security Monitoring with Suricata, you will gain the experience needed to get started monitoring your network with Suricata. First, you’ll explore the basics of intrusion detection and prevention. Next, you’ll discover the basics of network security monitoring and the role Suricata plays. With a solid understanding of Suricata, you will next learn about Suricata’s core functions. Finally, you will learn how to deploy Suricata into an enterprise environment. When you’re finished with this course, you’ll have the skills and knowledge of network security monitoring needed to deploy Suricata into your own networks.

This course assumes access to the Pluralsight lab environment to complete the exercises. Should you not have access to Pluralsight labs a virtual machine image is available for download, however, some details may differ from the Pluralsight lab environment. Information on how to download the virtual machine image can be found in the exercise files.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Network Security

Open Information Security Foundation (OISF)

Instructor's Courses

The Open Information Security Foundation is a a 501(c)3 nonprofit organization created to build community and to support open source security technologies like Suricata, the world-class IDS/IPS network monitoring engine.

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.