Description
Course info
Level
Intermediate
Updated
Apr 27, 2021
Duration
1h 6m
Description

Intrusion detection and prevention are an important part of any enterprise network security monitoring plan. In this course, Manage Suricata Rule Sets and Rule Sources, you’ll learn to select and obtain pre-written rules. First, you’ll explore open-source rule sets. Next, you’ll discover how to leverage suricata-update to add rule sources. Finally, you’ll learn how to manage regular updates with cron. When you’re finished with this course, you’ll have the skills and knowledge of Suricata needed to manage Suricata’s rule sets and rule sources using suricata-update.

About the author
About the author

Matt Glass is an IT Project Manager in Stuttgart, Germany, working as a government contractor. He has more than 12 years of IT experience in a variety of roles.

More from the author
Suricata: Getting Started
Intermediate
1h 12m
Dec 14, 2020
More courses by Matt Glass
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
[Autogenerated] Hello everyone. My name is Matt Glass and welcome to my course manage Sir. Qatar Rule sets and Rural sources. I'm an I. T. Project manager at lita's working in studio art Germany. Surakarta is an open source intrusion detection in line intrusion prevention and network security monitoring engine. Sarasota is developed and maintained by the Open Information Security Foundation, a community run non profit foundation. In this course we're continuing the search cut a path focusing on rural set and rural source management within Sarah kata. We'll use tools to automate the rule set management process and test rule sets against example traffic. Some of the major topics that will cover include understanding Surakarta rule sets and rural sources leveraging. Surakarta update to manage rule sets and sources examining rule set effects using p cap replay and scheduling. Automatic updates using Cron. By the end of this course you'll be able to manage rule sets and sources using Surakarta, update and evaluate their effects. Before beginning the course, you should be familiar with basic computer networking concepts using a Linux command line interface and operating Surakarta on a Linux server. Or you can complete the Surakarta. Getting started course first. I hope you'll join me on this journey to continue learning Surakarta with a managed terracotta rule sets and Rural sources course at Pluralsight