Getting Started with Snort

In Getting Started with Snort, you will go from never before having operated Snort, to comfortably starting it from the command line and expanding its functionality through additional plugins.
Course info
Level
Beginner
Updated
Jun 3, 2020
Duration
1h 6m
Table of contents
Description
Course info
Level
Beginner
Updated
Jun 3, 2020
Duration
1h 6m
Description

Detecting potential threats to an organization’s network is an important part of securing the overall system. In this course, Getting Started with Snort, you will learn foundational knowledge to operate Snort and leverage its plugins. First, you will learn how to configure and run Snort. Next, you will discover how to expand its functionality by configuring plugins. Finally, you will explore how to export alerts to external applications. When you are finished with this course, you will have the skills and knowledge of Snort needed to leverage its capabilities.

About the author
About the author

Matt Glass is an IT Project Manager in Stuttgart, Germany, working as a government contractor. He has more than 12 years of IT experience in a variety of roles.

More from the author
Suricata: Getting Started
Intermediate
1h 12m
Dec 14, 2020
Lateral Movement with WMIOps
Intermediate
24m
Sep 25, 2020
More courses by Matt Glass
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
Hello, everyone, my name is Matt Glass, and welcome to my course, Getting Started with Snort. I'm an IT project manager at Leidos, working in Stuttgart, Germany. Snort is an intrusion detection and prevention system first developed in 1998 and continuously improve since then. Their latest version is completely rewritten with significantly more functionality. In this course, we're starting from the beginning, assuming limited to no previous interaction with Snort, and we're going to build you up to being able to run it from the command line, and leveraging plugins to expand its functionality. Some of the major topics that we will cover include starting and running Snort, obtaining and enabling community rules, enabling and configuring additional plugins, and exporting alerts to visualization tools. By the end of this course, you'll be able to configure Snort based on security goals, and comfortably run it from the command line. Before beginning the course, you should be familiar with basic computer networking concepts, and the use of a Linux command line interface. I hope you'll join me on this journey to learn Snort, with the Getting Started with Snort course, at Pluralsight.