Detecting potential threats to an organization’s network is an important part of securing the overall system. In this course, Getting Started with Snort, you will learn foundational knowledge to operate Snort and leverage its plugins. First, you will learn how to configure and run Snort. Next, you will discover how to expand its functionality by configuring plugins. Finally, you will explore how to export alerts to external applications. When you are finished with this course, you will have the skills and knowledge of Snort needed to leverage its capabilities.
Course Overview Hello, everyone, my name is Matt Glass, and welcome to my course, Getting Started with Snort. I'm an IT project manager at Leidos, working in Stuttgart, Germany. Snort is an intrusion detection and prevention system first developed in 1998 and continuously improve since then. Their latest version is completely rewritten with significantly more functionality. In this course, we're starting from the beginning, assuming limited to no previous interaction with Snort, and we're going to build you up to being able to run it from the command line, and leveraging plugins to expand its functionality. Some of the major topics that we will cover include starting and running Snort, obtaining and enabling community rules, enabling and configuring additional plugins, and exporting alerts to visualization tools. By the end of this course, you'll be able to configure Snort based on security goals, and comfortably run it from the command line. Before beginning the course, you should be familiar with basic computer networking concepts, and the use of a Linux command line interface. I hope you'll join me on this journey to learn Snort, with the Getting Started with Snort course, at Pluralsight.