Writing Snort Rules

by Matt Glass

Snort is an open source network intrusion detection system and intrusion prevention system. This course will teach you how to write your own custom rules in Snort to detect specific traffic.

What you'll learn

Would you like to detect potential threats to your network? Snort is an open source network intrusion detection system and intrusion prevention system that includes the ability to write custom rules. In this course, Writing Snort Rules, you’ll learn to write your own custom rules for Snort to detect specific traffic. First, you’ll explore the basic Snort rule structure. Next, you’ll discover how to leverage additional options to refine your traffic detection. Finally, you’ll learn how to further optimize your rules with new options in Snort version 3. When you’re finished with this course, you’ll have the skills and knowledge of Snort needed to write your own rules.

About the author

Matt Glass is a Regional Field Service Support Lead in Yokosuka, Japan, working as a government contractor. Matt has more than 13 years of IT experience in a variety of roles. Consistently finding joy in developing the skills of others and helping their careers, he joined Pluralsight in 2017 to pass on the lessons he learned. Matt is married and the father of four children.

Ready to upskill? Get started