This course on Intrusion Detection with Suricata aims to teach learners how to install, configure, and utilize Suricata for Blue Team intrusion detection. By the end of the course, students will be able to understand the functionality of Suricata, configure it, test configurations, run intrusion tests, check logs, and integrate Suricata with Wazuh. The course employs a practical demonstration approach, covering topics such as downloading Suricata, specifying sources, adding rulesets, and examining log files. The course is designed for individuals interested in cybersecurity, particularly those focusing on Blue Team security operations.
Intrusion Detection with Suricata - Blue Team Series with Hackersploit
Overview
Syllabus
Introduction
What We’ll Be Covering
Pre Requisites
Introduction to Suricata
How Does Suricata Work?
Where is Suricata Placed In a Network?
About our Lab Environment
Practical Demo
How to Download Suricata
How to Start Suricata
How to Configure Suricata
Specifying Your Own Sources
Adding Rulesets to Your Configuration
How to Test the Configuration File
Loading Suricata with the New Configuration
How to Run an Intrusion Test with Suricata
How to Check the Logs
How to Us Custom Rules
Examining Suricata Log Files
Integrating Suricata with Wazuh
Conclusion
Taught by
Linode
Related Courses
-
Monitoring, Logging and Responding to Incidents
-
Intrusion Detection with Wazuh - Blue Team Series with Hackersploit
4.5 -
Blue Team Hacking - Intrusion Detection with Snort
5.0 -
Splunk Security Event Monitoring - Blue Team Series with Hackersploit
4.0 -
HackerSploit Blue Team Series - Network Traffic Analysis with Wireshark
5.0 -
Disk Analysis with Autopsy - HackerSploit Blue Team Training
