| 
  • If you are citizen of an European Union member nation, you may not use this service unless you are at least 16 years old.

  • You already know Dokkio is an AI-powered assistant to organize & manage your digital files & messages. Very soon, Dokkio will support Outlook as well as One Drive. Check it out today!

View
 

Lecture - Creating SNORT Rules

Page history last edited by Philip Craiger 11 years, 6 months ago

 Creating SNORT Rules

 

 

Summary

 

  • Several examples of Snort rule creation and triggered alerts.

 

Video 

 

  • https://dl.dropbox.com/u/1546231/4663_creating-snort-rules.mp4 
    • 4:22 - Adding custom rules to Snort configuration
    • 4:47 - Create custom rules file
    • 5:40 - FTP alert rule
    • 14:57 - Manually running Snort
    • 17:53 - FTP alert generated
    • 19:12 - Keyword alert rule
    • 25:24 - Keyword alert generated
    • 26:28 - ICMP alert rule
    • 28:56 - ICMP alert generated
    • 36:28 - Processing a tcpdump file with Snort

 

Reference Materials

 

 

 

Additional Information

 

 

 

All Course Lectures

Comments (0)

You don't have permission to comment on this page.