Back to all modules

Snort

Snort icon

Snort is the most widely used Open Source Intrusion Detection & Prevention System and is essential in defining malicious network activity.

This module will cover the need-to-know functionalities of Snort for any security analyst: Traffic Sniffing, Traffic Logging, Traffic Blocking, PCAP investigation, and creating IDS/IPS rules. You will learn how to use Snort for different purposes and create IDS/IPS rules for different threat scenarios. By the End of the module, you will master your Snort skills and be able to detect anomalies and threats and stop malicious activities.

Snort icon
image

0%

Snort

Learn how to use Snort to detect real-time threats, analyse recorded traffic files and identify anomalies.

image

0%

Snort Challenge - The Basics

Put your snort skills into practice and write snort rules to analyse live capture network traffic.

image

0%

Snort Challenge - Live Attacks

Put your snort skills into practice and defend against a live attack

Need to know

Need to know: Wireshark

Wireshark

Wireshark is the industry-standard tool for network protocol analysis and is essential in any kind of traffic investigation.

What are modules?

A learning pathway is made up of modules, and a module is made of bite-sized rooms (think of a room like a mini security lab).

Module tree diagram

We use cookies to ensure you get the best user experience. For more information contact us.

Read more